The Design and Implementation of Object Security Descriptor and User Access Token Interface
|School||Xi'an University of Electronic Science and Technology|
|Keywords||Security Descriptor Access Token User Permission Security Object|
The research of Windows object security descriptor and user’s access token is animportant application of project development on the Windows operating systemplatform. Security descriptor is one of the crucial data structure to master the operatingmechanism of the Windows operating system. It provides the permission level settingfunction to the Windows security object. The user’s access token, meanwhile, is a datastructure that indicates the access right of the users in the Windows security system.This thesis has launched a deep research of the Windows object security descriptor anduser’s access token technology. These technologies can make the access to resourcessafer and more efficient in the Windows program development.The thesis designed and realized two sets of interfaces on the basis of relevanttheoretical analysis of Windows object security descriptor and user’s access tokentechnology. The two sets of interfaces are permission to modify the security object andprivilege to modify the access token. It has, through theoretical analysis and realization,proposed a reliable method to use the program to access the Windows security object,ensuring the safety and efficiency of the operation of Windows resource management.At the end of the thesis, the author has tested the two sets of interfaces in differentversions of Windows. According to the result of the test, the safety and efficiency of themethod have achieved the aim of the research.