University of Houston
Department of Computer Science

In partial fulfillment of the Requirements for the Degree of
Master of Science

Preedee Jetsadajin
will defend his thesis

WEB SECURITY ANALYSIS AND IMPLEMENTATION OF REMOTE ACCESS
AND APPLICATION ACCESS CONTROL: A CASE STUDY

Abstract

Web Security is a complex problem, comprising many areas. We analyzed and implemented two areas of the problem as a case study at the College of Technology. The two areas are remote access and application access control.

For remote access, we examined whether the methods that are currently used at the college have impact on the security of the college’s web server. The methods include mapped network drive and FTP file transfer. We also investigated how an automated file transfer program impacts the security of the college’s web server. Then we implemented a program to transfer files securely.

At the College of Technology, many open source web applications are used. Some applications do not have access control. This creates security risks in that the integrity and availability of the application can be harmed. As a result, we implemented access controls for these applications to improve the overall security of the college’s web server.

In conclusion, the thesis describes the status of the college web server’s security regarding the areas of remote access and web application access control. Moreover, the thesis describes the implementation of security tasks related to remote access and application access control.

 

Date: Thursday, July 21, 2005
Time: 2:30 PM
Place: 550-PGH

Faculty, students, and the general public are invited.
Thesis Advisor: Dr. Ernst L. Leiss