WINDOW ACCESS CONTROL SYSTEM: ITS DESIGN AND IMPLEMENTATION


WINDOW ACCESS CONTROL SYSTEM: ITS DESIGN AND IMPLEMENTATION

                                                                                  ABSTRACT:        

The relevance of this study cannot be overemphasize because it tend to revealed the impact and effect of Window Access Control Security System. It main focus of this system is to designed a system that would be able to handle security process (aspect) in a computer system The system was studied and relevant officials were interview to acquire the required data. This designed new system allows easily information retrieval of accurate information for effective and efficient allocations. Easy maintenance of information integrity as well as time saving and reduction in operation. The system design is visual basic 6.0 because it is interactive, menu- driven and user friendly. It provides a timely information: about students. Most students information operations are recorded and stored in the computer and retrieved at willed. It ensures security in windows and also access some vital software online. It is recommend that private and public enterprises should make use of the newly developed system.

TABLE OF CONTENTS

Title Page    -    -    -    -    -    -    -    -    -    i

Certification    -    -    -    -    -    -    -    -    -    ii

Dedication     -    -    -    -    -    -    -    -    -    iii

Acknowledgement     -    -    -    -    -    -    -    iv

Abstract    -    -    -    -    -    -    -    -    -    v

Table of Contents    -    -    -    -    -    -    -    -    vi-viii

CHAPTER ONE – INTRODUCTION

1.0    Introduction    -    -    -    -    -    -    -    -    1-2

1.1    Theoretical Background    -    -    -    -    -    -    3

1.2    Statement of Problem    -    -    -    -    -    -        3-4

1.3    Aims and Objectives of the Study    -    -    -    -    4

1.4    Significance of the Study        -    -    -    -    -       5-6

1.5    Scope of the Study        -    -    -    -    -    -    6

1.6    organization of the Research     -    -    -    -    -    7

1.7    Definition of Terms    -    -    -    -    -    -        7

CHAPTER TWO: LITERATURE REVIEW

2.0    Introduction        -    -    -    -    -    -    -    8

2.1    Concept of Windows Access Control    -    -    -    -        9-13

2.2    Types of Windows Access Control    -    -    -    -    13-15 

2.2.1    Policies, Models and Mechanism    -    -    -    -    15-22

2.3    Windows Account Overview    -    -    -    -    -        22-23

2.4    Logical Model of Access-Control Interaction    -    -    -      23-26

2.4.1    Security Bugs Found          -           -         -    -    -    -    26-27 

2.5    Access Control List (ACL) and Limitation        -    -    -    27-29

CHAPTER THREE: SYSTEM DESIGN AND ANALYSIS

3.0    Introduction    -    -    -    -    -    -    -    -    30

3.1    Research Methodology     -    -    -    -    -    -    30

3.2    System Analysis     -    -    -    -    -    -    -    30

3.2.1    Analysis of the Existing System        -    -    -    -    30

3.2.2    Problem of the Existing System    -    -    -    -    -    31

3.2.3    Analysis of the Proposed System     -    -    -    -    31

3.2.3.1    Advantages of the Proposed System     -    -    -    31

 3.2.3.2    Disadvantages of the Proposed System    -    -    31

3.3    System Design     -    -    -    -    -    -    -    32

3.3.1    Input Layout    -    -    -    -    -    -    -    32

3.3.2    Program Flowchart    -    -    -    -    -    -    32

3.3.3    Output Format     -    -    -    -    -    -    -    32      

CHAPTER FOUR -     SYSTEM IMPLEMENTATION AND DOCUMENTATION

40    Introduction     -    -    -    -    -    -    -    33

4.1    System Design Diagram     -    -    -    -    -    -    33

4.2    Choice of Programming Language    -    -    -    -    33

4.3    Analysis of Modules    -    -    -    -    -    -    33

4.4    Programming Environment     -    -    -    -    -    34

4.4.1    Hardware Requirement    -    -    -    -    -    -    34

4.4.2    Software Requirement     -    -    -    -    -    -    34

4.5    Implementation    -    -    -    -    -    -    -    43-44

CHAPTER FIVE     –    SUMMARY, CONCLUSION AND RECOMMENDATION

5.0    Introduction    -    -    -    -    -    -    -    -    45

5.1    Constraints of the Study     -    -    -    -    -    -    45

5.2    Summary    -    -    -    -    -    -    -    -    45

5.3    Conclusion    -    -    -    -    -    -    -    -    46

5.4    Recommendations    -    -    -    -    -    -    -    46

References    -    -    -    -    -    -    -    -    46

Appendix A (Program Flowchart)    -    -    -    -    47-51

Appendix B (Source Code)    -    -    -    -    -    52-57

Appendix C (Output Format)    -    -    -    -    -    58-60

CHAPTER ONE

INTRODUCTION

1.0    Introduction

In computer security, window access control (WAC) refers to a type of access control which the operating system (OS) constrains the ability of a subject or initiator to access or generally perform some sort of operation on an object or target. In practice, a subject is usually a process or thread; objects are constructs such as files, directories, TCP/UDP ports, shared memory segments, input and output devices etc. Subjects and objects each have a set of security attributes.

Whenever a subject attempts to access an object, an authorization rule enforced by the operating system kennel examines these security attributes and decides whether the access can take place. Any operation by any subject on any object will be tested against the set of authorization rules (aka policy) to determine if the operation is allowed. According to Pete Sclafani (2002), database management system, in its access control mechanism, can also apply window access control. With window access control, this security policy is centrally controlled by a security policy administrator. Users do not have the ability to override the policy to grant access to files that would otherwise be restricted. By contrast, discretionary access control (DAC), which also governs the ability of subjects to access objects, allows users the ability to make policy decisions or assign security attributes. WAC-enabled systems allow policy administrators to implement organization-wide security policies. Unlike with DAC, users cannot override or modify this policy, either accidentally or intentionally. This allows security administrators to define a central policy that is guaranteed (in principle) to be enforced for all users. According to Barkley J., (1997) MAC has been closely associated with multi-level secure (MLS) systems. The Trusted Computer System Evaluation Criteria (TCSEC), the seminal work on the subject which is often referred to as the "Orange Book", defines WAC as "a means of restricting access to objects based on the sensitivity (as represented by a label) of the information contained in the objects and the formal authorization (i.e., clearance) of subjects to access information of such sensitivity". Early implementations of WAC such as Honeywell's SCOMP, USAF SACDIN, NSA Blacker, and Boeing's MLS LAN focused on MLS to protect military-oriented security classification levels with robust enforcement. Originally, the term WAC denoted that the access controls were not only guaranteed in principle, but in fact. Early security strategies enabled enforcement guarantees that were dependable in the face of national lab level attacks. More recently, with the advent of implementations such as SELinux (incorporated into Linux kernels, Window Integrity Control (incorporated into Windows Vista and newer), and window schemes derived from the FreeBSD WAC Framework in OS, iOS, and Junos, WAC has started to become more mainstream and is evolving out of the MLS niche. These more recent WAC implementations have recognized that the narrow TCSEC definition, focused as it was on MLS, is too specific for general use Cavale M., and McPherson D., (2003). These implementations provide more depth and flexibility than earlier MLS-focused implementations, allowing (for example) administrators to focus on issues such as network attacks and malware without the rigor or constraints of MLS systems.

1.1        Theoretical Background

Many application programs demand too many privileges, more than strictly necessary to access the data on which they operate. Logical model of Windows XP access control, in a declarative but executable (Datalog) format. We have built a scanner that reads access-control configuration information from the Windows registry, file system, and service control manager database, and feeds raw configuration data to the model.

Adequate security of information and information systems is a fundamental management responsibility. Nearly all applications that deal with financial, privacy, safety, or defense include some form of access control. Access control is concerned with determining the allowed activities of legitimate users, mediating every attempt by a user to access a resource in the system. In some systems, complete access is granted after successful authentication of the user, but most systems require more sophisticated and complex control. In some cases, authorization may mirror the structure of the organization, while in others it may be based on the sensitivity level of various documents and the clearance level of the user accessing those documents. When we run this on a typical Windows installation managed by a careful systems administrator, and several exploitable user-to-administrator and guest-to-any-user vulnerabilities caused by misconfigurations in the default installation of software from Adobe, AOL, Macromedia, Microsoft and some anonymous vendors.

1.2        Statement of Problem

Window access control system with access controls has historically implied a very high degree of robustness that assures that the control mechanisms resist subversion, thereby enabling them to enforce an access control policy that is mandated by some regulation that must be absolutely enforced for classified information.

For WAC, the access control decision is contingent on verifying the compatibility of the security properties of the data and the clearance properties of the individual (or the process proxying for the individual). The decision depends on the integrity of the metadata (e.g. label) that defines the security properties of the data, as well as the security clearance of the individual or process requesting access.

1.3        Aim and Objectives of Study

This project aim primary at developing a window access control system that will help to secure unauthorized access to the computer system file or important document.  This project is aimed to develop a computerized software program that enforces user authentication and authorization for users of m-desk, and thereby solve the problems derived from the fact that the DICOM standard does not specify a way to place restrictions on the resources a PACS may provide.

The project also has the ambition to simplify the administration of m-desk.

That is, the administration regarding the set-up of the DICOM application between m-desk and the WAC. In order to be able to place any restrictions on the resources provided by a WAC, the program should be located logically between the clients and the window.

1.4        Purpose of the Study

The purpose of this study is to provide and to promote the level of security measure in an organization and in individual household. The is aimed at developing or designing a software that will be able to guard the computer from been access in such a way that intruders are not given a bit chance to introduce themselves to the computer system.  

1.5        Significance of the Study

Obviously the design of this window access control system is expected to be a guard to any unauthorized access to computer files without adequate permission from the administrator. It help will the organization to be able to secure their document and files from been access by unknown users. This window access control system will help to restore the clients and organization goodwill’s about keeping their file and relevant document. To some organization or individual who might likely prefer having their document save in the computer will be to relief from fact of fear of sabotage.  The research will go a long way to alleviate the problem fraud in financial industries.  With the advent of this idea or development, files and important document are solely secured.        

 1.6     Scope of the Study

 This research work will concentrate on a window access control system alone. The scope is covered from developing a software that will carry out the operation.

1.7     Limitations of the Study   

Some of the constraints, which made me not to cover this work wide are;

1.    Financial help which I needed most to carry out this project work

2.    Economic uncertainty in the country

3.    No access to materials related to the topic.

 1.8     Organization of the Study

The research work is organized into five chapters.

Chapter one is the introduction, theoretical background, statement of the problems, objectives of the study, significance of the study, organization of the research, scope and limitations of the study and definition of terms.

Chapter two contains the review of related literature.

Chapter three is about the system design and methodology used in gathering information for the research work.

Chapter four elucidates about the implementation of the system, chapter talks about the summary, conclusion and recommendations.

1.9     Definition of Terms

Access: - This way or an opportunity for someone to use something either in a negative or positive way.

Principal: - several measurement techniques used in the life science to gather data for many more variables per sample       that the typical number of sample assayed.

Policy: - This is a principal or protocol to guide decision making to achieve rational outcome. A policy is a statement             of intend and implemented as a procedure or protocol.

Security: - This is the protection of information asset through the use of technology, process and training. Is equally the degree of resistance to or protection from harm. It implies to any vulnerable and valuable asset such as person, dwelling, community, nation or organization.

Window: - this is an operating system which is an interface or bridge between computer hardware and software. The hardware is really hard to understand by using the software we made soften the things and forgot about the hardness of the hardware so window is and user friendly interface between computer and user.

.


TYPE IN YOUR TOPIC AND CLICK SEARCH.






RESEARCHWAP.COM

Researchwap.com is an online repository for free project topics and research materials, articles and custom writing of research works. We’re an online resource centre that provides a vast database for students to access numerous research project topics and materials. Researchwap.com guides and assist Postgraduate, Undergraduate and Final Year Students with well researched and quality project topics, topic ideas, research guides and project materials. We’re reliable and trustworthy, and we really understand what is called “time factor”, that is why we’ve simplified the process so that students can get their research projects ready on time. Our platform provides more educational services, such as hiring a writer, research analysis, and software for computer science research and we also seriously adhere to a timely delivery.

TESTIMONIES FROM OUR CLIENTS


Please feel free to carefully review some written and captured responses from our satisfied clients.

  • "Exceptionally outstanding. Highly recommend for all who wish to have effective and excellent project defence. Easily Accessable, Affordable, Effective and effective."

    Debby Henry George, Massachusetts Institute of Technology (MIT), Cambridge, USA.
  • "I saw this website on facebook page and I did not even bother since I was in a hurry to complete my project. But I am totally amazed that when I visited the website and saw the topic I was looking for and I decided to give a try and now I have received it within an hour after ordering the material. Am grateful guys!"

    Hilary Yusuf, United States International University Africa, Nairobi, Kenya.
  • "Researchwap.com is a website I recommend to all student and researchers within and outside the country. The web owners are doing great job and I appreciate them for that. Once again, thank you very much "researchwap.com" and God bless you and your business! ."

    Debby Henry George, Massachusetts Institute of Technology (MIT), Cambridge, USA.
  • "I love what you guys are doing, your material guided me well through my research. Thank you for helping me achieve academic success."

    Sampson, University of Nigeria, Nsukka.
  • "researchwap.com is God-sent! I got good grades in my seminar and project with the help of your service, thank you soooooo much."

    Cynthia, Akwa Ibom State University .
  • "Great User Experience, Nice flows and Superb functionalities.The app is indeed a great tech innovation for greasing the wheels of final year, research and other pedagogical related project works. A trial would definitely convince you."

    Lamilare Valentine, Kwame Nkrumah University, Kumasi, Ghana.
  • "Sorry, it was in my spam folder all along, I should have looked it up properly first. Please keep up the good work, your team is quite commited. Am grateful...I will certainly refer my friends too."

    Elizabeth, Obafemi Awolowo University
  • "Am happy the defense went well, thanks to your articles. I may not be able to express how grateful I am for all your assistance, but on my honour, I owe you guys a good number of referrals. Thank you once again."

    Ali Olanrewaju, Lagos State University.
  • "My Dear Researchwap, initially I never believed one can actually do honest business transactions with Nigerians online until i stumbled into your website. You have broken a new legacy of record as far as am concerned. Keep up the good work!"

    Willie Ekereobong, University of Port Harcourt.
  • "WOW, SO IT'S TRUE??!! I can't believe I got this quality work for just 3k...I thought it was scam ooo. I wouldn't mind if it goes for over 5k, its worth it. Thank you!"

    Theressa, Igbinedion University.
  • "I did not see my project topic on your website so I decided to call your customer care number, the attention I got was epic! I got help from the beginning to the end of my project in just 3 days, they even taught me how to defend my project and I got a 'B' at the end. Thank you so much researchwap.com, infact, I owe my graduating well today to you guys...."

    Joseph, Abia state Polytechnic.
  • "My friend told me about ResearchWap website, I doubted her until I saw her receive her full project in less than 15 miniutes, I tried mine too and got it same, right now, am telling everyone in my school about researchwap.com, no one has to suffer any more writing their project. Thank you for making life easy for me and my fellow students... Keep up the good work"

    Christiana, Landmark University .
  • "I wish I knew you guys when I wrote my first degree project, it took so much time and effort then. Now, with just a click of a button, I got my complete project in less than 15 minutes. You guys are too amazing!."

    Musa, Federal University of Technology Minna
  • "I was scared at first when I saw your website but I decided to risk my last 3k and surprisingly I got my complete project in my email box instantly. This is so nice!!!."

    Ali Obafemi, Ibrahim Badamasi Babangida University, Niger State.
  • To contribute to our success story, send us a feedback or please kindly call 2348037664978.
    Then your comment and contact will be published here also with your consent.

    Thank you for choosing researchwap.com.