Strict application execution control with hierarchical group management using digital certificates on educational windows PCs

Daisuke Okamoto, Keita Kawano, Nariyoshi Yamai, Tokumi Yokohira

Research output: Contribution to journalArticle

Abstract

We have developed a system (traditional system) to flexibly provide the requested applications environment on educational Windows PCs. The traditional system dynamically controls the execution of applications installed on each educational PC depending on the rules defined by teachers as well as by administrators. The traditional system, however, has a low tolerance for malicious attacks. If the execution file of a certain application is falsified, the corresponding rules already applied become invalid. In addition, though the traditional system has a function to define groups of controlled applications, it does not support hierarchical groups. This reduces the usability of the traditional system. In order to address these issues, this paper proposes a control method of application execution using digital certificates. The proposed method has a high tolerance for the falsification of execution files by controlling their executions based on the reliability of the corresponding digital certificates. It also improves its usability by introducing hierarchical group management utilizing hierarchical structure for digital certificates.

Original languageEnglish
Pages (from-to)449-457
Number of pages9
JournalJournal of Information Processing
Volume23
Issue number4
DOIs
Publication statusPublished - Jul 15 2015

Fingerprint

Control systems

Keywords

  • Application execution control
  • Digital certificate
  • Educational PC

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Strict application execution control with hierarchical group management using digital certificates on educational windows PCs. / Okamoto, Daisuke; Kawano, Keita; Yamai, Nariyoshi; Yokohira, Tokumi.

In: Journal of Information Processing, Vol. 23, No. 4, 15.07.2015, p. 449-457.

Research output: Contribution to journalArticle

@article{9e1e828dc9d14ba6b6b39f9747aca8cd,
title = "Strict application execution control with hierarchical group management using digital certificates on educational windows PCs",
abstract = "We have developed a system (traditional system) to flexibly provide the requested applications environment on educational Windows PCs. The traditional system dynamically controls the execution of applications installed on each educational PC depending on the rules defined by teachers as well as by administrators. The traditional system, however, has a low tolerance for malicious attacks. If the execution file of a certain application is falsified, the corresponding rules already applied become invalid. In addition, though the traditional system has a function to define groups of controlled applications, it does not support hierarchical groups. This reduces the usability of the traditional system. In order to address these issues, this paper proposes a control method of application execution using digital certificates. The proposed method has a high tolerance for the falsification of execution files by controlling their executions based on the reliability of the corresponding digital certificates. It also improves its usability by introducing hierarchical group management utilizing hierarchical structure for digital certificates.",
keywords = "Application execution control, Digital certificate, Educational PC",
author = "Daisuke Okamoto and Keita Kawano and Nariyoshi Yamai and Tokumi Yokohira",
year = "2015",
month = "7",
day = "15",
doi = "10.2197/ipsjjip.23.449",
language = "English",
volume = "23",
pages = "449--457",
journal = "Journal of Information Processing",
issn = "0387-5806",
publisher = "Information Processing Society of Japan",
number = "4",

}

TY - JOUR

T1 - Strict application execution control with hierarchical group management using digital certificates on educational windows PCs

AU - Okamoto, Daisuke

AU - Kawano, Keita

AU - Yamai, Nariyoshi

AU - Yokohira, Tokumi

PY - 2015/7/15

Y1 - 2015/7/15

N2 - We have developed a system (traditional system) to flexibly provide the requested applications environment on educational Windows PCs. The traditional system dynamically controls the execution of applications installed on each educational PC depending on the rules defined by teachers as well as by administrators. The traditional system, however, has a low tolerance for malicious attacks. If the execution file of a certain application is falsified, the corresponding rules already applied become invalid. In addition, though the traditional system has a function to define groups of controlled applications, it does not support hierarchical groups. This reduces the usability of the traditional system. In order to address these issues, this paper proposes a control method of application execution using digital certificates. The proposed method has a high tolerance for the falsification of execution files by controlling their executions based on the reliability of the corresponding digital certificates. It also improves its usability by introducing hierarchical group management utilizing hierarchical structure for digital certificates.

AB - We have developed a system (traditional system) to flexibly provide the requested applications environment on educational Windows PCs. The traditional system dynamically controls the execution of applications installed on each educational PC depending on the rules defined by teachers as well as by administrators. The traditional system, however, has a low tolerance for malicious attacks. If the execution file of a certain application is falsified, the corresponding rules already applied become invalid. In addition, though the traditional system has a function to define groups of controlled applications, it does not support hierarchical groups. This reduces the usability of the traditional system. In order to address these issues, this paper proposes a control method of application execution using digital certificates. The proposed method has a high tolerance for the falsification of execution files by controlling their executions based on the reliability of the corresponding digital certificates. It also improves its usability by introducing hierarchical group management utilizing hierarchical structure for digital certificates.

KW - Application execution control

KW - Digital certificate

KW - Educational PC

UR - http://www.scopus.com/inward/record.url?scp=84937392726&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84937392726&partnerID=8YFLogxK

U2 - 10.2197/ipsjjip.23.449

DO - 10.2197/ipsjjip.23.449

M3 - Article

AN - SCOPUS:84937392726

VL - 23

SP - 449

EP - 457

JO - Journal of Information Processing

JF - Journal of Information Processing

SN - 0387-5806

IS - 4

ER -