all InfoSec news
An Inverse Approach to Windows' Resource-Based Permission Mechanism for Access Permission Vulnerability Detection. (arXiv:2306.07734v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
In organizations, employees work with information stored in files according
to their duties and responsibilities. Windows uses resource-based access
permissions that any permission for any user has to be set separately per
resource. This approach gets complicated as the number of resources and users
increase, and causes oversights in assigning permissions. Therefore, a special
mechanism is required to scrutinize what permissions any employee has on any
set of resources. This requirement is circumvented by reversing the Windows
approach in terms …
access detection employees files information organizations permission permissions resources responsibilities vulnerability vulnerability detection windows work