Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2005.12C.5.643

Design and Implementation of ACM-based Web Security Access Control System for Intranet Security  

Cho Nam-Deok (소프트캠프(주))
Park Hyun-Gun (숭실대학교 전산원)
Publication Information
The KIPS Transactions:PartC / v.12C, no.5, 2005 , pp. 643-648 More about this Journal
Abstract
Intranet system for use within an organization, usually a corporation, is to basically pass through user authentication, but information can be leaked, modified, and deleted by malevolent users who disguise an authorized user or due to user's mistakes in using various functions of web browser. Thus, there is a need for measures to protect the information from illegal use, transformation through partial modification, and illegal leakage such as fraudulent use. This paper presents a flexible Web Security Access Control system based ACM which Provide efficient suity Policy to Protect information in intranet. This Web Security Access Control system not only enhances security by Performing encryption/decryption of information in intranet but also, for sharing confidential information among departments, performs effective and useful access control by assigning different authority to the secured web page. And, by controlling the functions of client PC in various ways, information leakage on malicious purpose or by mistake can be prevented.
Keywords
ACM(Access Control Matrix)Web Based Security Access Control System; Intranet; SecuIntranet;
Citations & Related Records
Times Cited By KSCI : 2  (Citation Analysis)
연도 인용수 순위
1 김양석, 강주미, 원용관, '웹 기반 협업 시스템의 문서보안', 정보처리 추계학술발표 논문집, 제9권, 제2호, 2002.2
2 R.Bently, 'Basic Support for Cooperative Work on the World Wide Web', International Journal or Human Computer Studies, 1997   DOI   ScienceOn
3 A. Freier, P.Karlton, and P.Kocher, 'The SSL Protocol Version 3.0', http://www.netscape.com/eng/ssl3/3-spec.ps, 1996.3
4 T.Dierks, et, al., 'The TLS Protocol 1.0' RFC2246, 1999.1
5 홍승필, 고제욱, '정보보안 기술과 구현', 정보과학회지, 한국정보과학회, 1998
6 C.Eckert, 'On Security Models', International Conference on Information Security, 1996
7 J. Weeks, etc, 'CCI-Based WebSecurity: A Design Using PGP', WWW Journal 95, 1995
8 B.Rescorla, ef, al, The Secure HyperText Transfer Protocol, RFC 2660, 1999.8
9 Ivan Ristic, 'Apache Security', O'REILLY, 2005.03.15
10 S.M.Bellovin, 'Security Problems in the TCP/IP Protocol Suite', Computer Communication Review, Vol. No.2, pp.32-48   DOI
11 D.Bernstein, 'TAP', TAP-std working group, Aug., 1992
12 강신각, 'Web Security and Payments, WWW-KR 워크?', 자료집, 4-2호, 1996.11
13 강신각, 박정수, '월드 와이드 웹(WWW)의 보안기술', 정보처리논문지, 제 7권, 제2호, 2000.3   과학기술학회마을
14 박정수, 강신각, 박성열, '월드 와이드 웹 보안 기술 및 동향', 정보과학회지, 한국정보과학회, 1997.4   과학기술학회마을