Presentation | 2012/3/8 Access Control Architecture Separating Privilege by a Thread on a Web Server Ryosuke Matsumoto, Yasuo Okabe, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | In Web hosting services, hosting systems use access controls like suEXEC on apache Web servers to separate privilege by each virtual host. However, existing access control architectures on Web servers have a problem in their low performance and are not appropriate for dynamic contents like Web API since these architectures require termination of the process after each HTTP session. The system developers are not easy to install existing access controls since these are provided by each interpreter and program execution methods conventionally. In this paper, we propose the access control architecture "mod_process_security". In this architecture a server process creates a new thread on the server process when accepting a request. Then, the web server separates privilege by the thread and processes the contents on the thread. The server process installed "mod_process_security" executes programs faster. System developers can easily install it on web servers since we replace it with the complicated existing access controls. "mod_process_security" can be installed for Apache HTTP Server on Linux as Apache Module which is widely used. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | |
Paper # | Vol.2012-IOT-16 No.13 |
Date of Issue |
Conference Information | |
Committee | SITE |
---|---|
Conference Date | 2012/3/8(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Social Implications of Technology and Information Ethics (SITE) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Access Control Architecture Separating Privilege by a Thread on a Web Server |
Sub Title (in English) | |
Keyword(1) | |
1st Author's Name | Ryosuke Matsumoto |
1st Author's Affiliation | Academic Center for Computing and Media Studies, Kyoto University() |
2nd Author's Name | Yasuo Okabe |
2nd Author's Affiliation | Academic Center for Computing and Media Studies, Kyoto University |
Date | 2012/3/8 |
Paper # | Vol.2012-IOT-16 No.13 |
Volume (vol) | vol.111 |
Number (no) | 484 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |