A secure encrypted Web platform based on RBAC heirarchical key graph

This thesis proposes a Secure Encrypted Web platform that provides Role Based Access Control (RBAC) at the file/dir level using Hierarchical key graph. The RBAC access control matrix determines the key structure and the directory based permission rights. The purpose of the solution is to provide a secure platform for the users to share/create/modify files and to use external authorized files.; The userID/password pair or Digital Certificate is used for initial client authentication. The client/server run secure socket layer (SSL) link. The server does the user file request authorization, and the decryption is done at the client side. The core of the system is the mechanism for generating hierarchical key set that maps to user roles. These keys are used for encryption/decryption of data. Browser clients use secure cookies whereas desktop application clients make use of key sets for secure session. For implementation, JAVA Security packages, Java Cryptographic Extension (JCE), Java Authentication and Authorization Service (JAAS) and Java Secure Socket Extension (JSSE) are used.