TY  - JOUR
T1  - Integrated Security Monitor Model for Enhancing Application Security
AU - , Sheila Anand AU - , V.Ramachandran 
JO  - Asian Journal of Information Technology
VL  - 3
IS  - 11
SP  - 1152
EP  - 1158
PY  - 2004
DA  - 2001/08/19
SN  - 1682-3915
DO  - ajit.2004.1152.1158
UR  - https://makhillpublications.co/view-article.php?doi=ajit.2004.1152.1158
KW  - 
AB  - The objective of this paper is to propose an integrated security monitor model for protecting business software applications. Security monitors have been designed to directly integrate with the applications and protect them from malicious activities by monitoring all user access to the application resources. Rule-base approach has been used to define permissible actions of users. User requests are analyzed before being processed by the application and the application response to the user requests are also analyzed to block access to unauthorized information. Knowledge of application characteristics enables such monitors to be specifically tailored to protect against misuse of application resources. User activities and usage of application resources have been logged for future analysis. Security offered is two-fold; protection from external intruders and protection from internal intruders being legitimate users who misuse their access privileges to gain unauthorized access to confidential information. The proposed model is a general one and can be implemented for any application. The model has been successfully tested with Email and File Transfer applications.
ER  - 