Development of Win32 API Message Authorization System for Windows based Application Provision Service

Kim Yeong Ho; Jeong Min A; Won Yong Gwan

Development of Win32 API Message Authorization System for Windows based Application Provision Service

Kim Yeong Ho

Jeong Min A

Won Yong Gwan

The KIPS Transactions:PartC, Vol. 11, No. 1, pp. 47-54, Feb. 2004

10.3745/KIPSTC.2004.11.1.47, PDF Download:

Abstract

The growth of computer resource and network speed has increased requests for the use of remotely located computer systems by connecting through computer networks. This phenomenon has boosted research activities for application service provision that uses server-based remote computing paradigm. The server-based remote computing paradigm has been developed as th ASP(Application Service Provision) medel, which provides remote users through application sharing protocol to application programs. Security requirement such as confidentially, availability, integrity should be satisfied to provide ASP service using centralize computing system. Existing Telnet or FTP service for a remote computing systems have satisfied security requirement by a simple access control to files and/or data. But windows-based centralized computing system is vulnerable to confidentiality, availability, integrity where many users use th same applicaton program installed in the same computer. In other words, the computing system needs detailed security level for each user different from others, such that only authorized user or group of users can run some specific functional commands for the program. In this paper, we propose Windows gbased centralized computing system that sets security policies for each user for the use of instructions of the application programs, and performs access control to the instructions based on the security policies. The system monitors all user messages which are executed through graphical user interface by the users connecting system. All instructions, i.e. messages, for the application program are now passed to authorization process that decides if an instruction is delivered to the application program based on the pre-defined security policies. This system can be used as security clearance for each user for the shared computing resource as well as shared application programs.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

K. Y. Ho, J. M. A, W. Y. Gwan, "Development of Win32 API Message Authorization System for Windows based Application Provision Service," The KIPS Transactions:PartC, vol. 11, no. 1, pp. 47-54, 2004. DOI: 10.3745/KIPSTC.2004.11.1.47.

[ACM Style]

Kim Yeong Ho, Jeong Min A, and Won Yong Gwan. 2004. Development of Win32 API Message Authorization System for Windows based Application Provision Service. The KIPS Transactions:PartC, 11, 1, (2004), 47-54. DOI: 10.3745/KIPSTC.2004.11.1.47.