Programming Languages: Object Pascal. Tools & Technologies: Borland Delphi 6.0 Enterprise; MS SQL Server 2000/MSDE, ADO; ActiveX; VBScript; TCP; Telnet.

Short project description

This project is a universal security system that can be used to realize information protection and users authentication in business applications. To control users access, the security system can use NT security or its own authentication system. To control users rights, the system allows to create sets of Policies, every Policy responsible for protection of some resource, and to define Policy values (rights to resources) for different users. To make maintenance of the security system easier, sets of policy values can be united in profiles and roles. The security system allows to set different roles for users, define time limits of using some role, or temporarily deactivate role for a user. To maintain the authentication system, administrator can define a list of modules for his business system and define roles allowing work in a specific module. Which means, control is set over rights for different components of the system and over rights in measures of a specific component of business system.

Policies list has tree structure. The system allows a policy to inherit values from another policy.

The system also tracks users’ activities, i.e. follows which users are working in the given moment, for how long and with what modules. If needed, administrator can delete an active user which will instantly stop work of this user with the given business application.

The security system has three-tiered architecture. Access to the security server is performed by a special protocol, which works over TCP. In its work, the security system uses the Configuration Manager. Security Manager is used to adjust security parameters. Additionally, the security server maintains access by Telnet protocol, and using standard telnet client allows to check needed rights and perform system tracing.