An Inverse Approach to Windows' Resource-Based Permission Mechanism for Access Permission Vulnerability Detection
[ X ]
Tarih
2022
Yazarlar
Dergi Başlığı
Dergi ISSN
Cilt Başlığı
Yayıncı
Erişim Hakkı
info:eu-repo/semantics/openAccess
Özet
In organizations, employees work with information stored in files according to their duties and responsibilities. Windows uses resource-based access permissions that any permission for any user has to be set separately per resource. This approach gets complicated as the number of resources and users increase, and causes oversights in assigning permissions. Therefore, a special mechanism is required to scrutinize what permissions any employee has on any set of resources. This requirement is circumvented by reversing the Windows’ approach in terms of user-accessible resources. This approach is implemented by a program allowing quick and easy examination of any type of permissions granted or denied to active directory users on any folder. In this way, administrators can make sure there is no any missing or overlooked setting that could cause a security vulnerability. This approach can easily be extended to scrutinize other resources, and for other local or active directory objects.
Açıklama
Anahtar Kelimeler
Inspection, Active directory users, Windows Server, Security vulnerability, Access permissions
Kaynak
Osmaniye Korkut Ata Üniversitesi Fen Bilimleri Enstitüsü Dergisi (Online)
WoS Q Değeri
Scopus Q Değeri
Cilt
5
Sayı
2
