{"id":"https://openalex.org/W2943403799","doi":"https://doi.org/10.23919/icact.2019.8701931","title":"Automated IT Audit of Windows Server Access Control","display_name":"Automated IT Audit of Windows Server Access Control","publication_year":2019,"publication_date":"2019-02-01","ids":{"openalex":"https://openalex.org/W2943403799","doi":"https://doi.org/10.23919/icact.2019.8701931","mag":"2943403799"},"language":"en","primary_location":{"id":"doi:10.23919/icact.2019.8701931","is_oa":false,"landing_page_url":"https://doi.org/10.23919/icact.2019.8701931","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 21st International Conference on Advanced Communication Technology (ICACT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067617488","display_name":"Sutthinee PONGSRISOMCHAI","orcid":null},"institutions":[{"id":"https://openalex.org/I25399158","display_name":"Mahidol University","ror":"https://ror.org/01znkr924","country_code":"TH","type":"education","lineage":["https://openalex.org/I25399158"]}],"countries":["TH"],"is_corresponding":true,"raw_author_name":"Sutthinee PONGSRISOMCHAI","raw_affiliation_strings":["Faculty of Information and Communication Technology, Mahidol University, Thailand"],"affiliations":[{"raw_affiliation_string":"Faculty of Information and Communication Technology, Mahidol University, Thailand","institution_ids":["https://openalex.org/I25399158"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001323997","display_name":"Sudsanguan Ngamsuriyaroj","orcid":null},"institutions":[{"id":"https://openalex.org/I25399158","display_name":"Mahidol University","ror":"https://ror.org/01znkr924","country_code":"TH","type":"education","lineage":["https://openalex.org/I25399158"]}],"countries":["TH"],"is_corresponding":false,"raw_author_name":"Sudsanguan NGAMSURIYAROJ","raw_affiliation_strings":["Faculty of Information and Communication Technology, Mahidol University, Thailand"],"affiliations":[{"raw_affiliation_string":"Faculty of Information and Communication Technology, Mahidol University, Thailand","institution_ids":["https://openalex.org/I25399158"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5067617488"],"corresponding_institution_ids":["https://openalex.org/I25399158"],"apc_list":null,"apc_paid":null,"fwci":0.1769,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.51283168,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"539","last_page":"544"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9753000140190125,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9753000140190125,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9413999915122986,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9272000193595886,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.8034363985061646},{"id":"https://openalex.org/keywords/information-security-audit","display_name":"Information security audit","score":0.6964353919029236},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6567556262016296},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6042137742042542},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5398276448249817},{"id":"https://openalex.org/keywords/information-technology-audit","display_name":"Information technology audit","score":0.4929194450378418},{"id":"https://openalex.org/keywords/quality-assurance","display_name":"Quality assurance","score":0.44077250361442566},{"id":"https://openalex.org/keywords/audit-trail","display_name":"Audit trail","score":0.43806928396224976},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4159458875656128},{"id":"https://openalex.org/keywords/security-controls","display_name":"Security controls","score":0.4139872193336487},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.3853538930416107},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.3416522145271301},{"id":"https://openalex.org/keywords/accounting","display_name":"Accounting","score":0.24856141209602356},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.2080869972705841},{"id":"https://openalex.org/keywords/internal-audit","display_name":"Internal audit","score":0.19607076048851013},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.17092710733413696},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.14474457502365112},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1135006844997406}],"concepts":[{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.8034363985061646},{"id":"https://openalex.org/C39358052","wikidata":"https://www.wikidata.org/wiki/Q2578632","display_name":"Information security audit","level":5,"score":0.6964353919029236},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6567556262016296},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6042137742042542},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5398276448249817},{"id":"https://openalex.org/C177309310","wikidata":"https://www.wikidata.org/wiki/Q758917","display_name":"Information technology audit","level":5,"score":0.4929194450378418},{"id":"https://openalex.org/C106436119","wikidata":"https://www.wikidata.org/wiki/Q836575","display_name":"Quality assurance","level":3,"score":0.44077250361442566},{"id":"https://openalex.org/C80958533","wikidata":"https://www.wikidata.org/wiki/Q1047174","display_name":"Audit trail","level":3,"score":0.43806928396224976},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4159458875656128},{"id":"https://openalex.org/C178148461","wikidata":"https://www.wikidata.org/wiki/Q1632136","display_name":"Security controls","level":3,"score":0.4139872193336487},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.3853538930416107},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.3416522145271301},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.24856141209602356},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.2080869972705841},{"id":"https://openalex.org/C170856484","wikidata":"https://www.wikidata.org/wiki/Q6452684","display_name":"Internal audit","level":3,"score":0.19607076048851013},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.17092710733413696},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.14474457502365112},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1135006844997406},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.0},{"id":"https://openalex.org/C191602146","wikidata":"https://www.wikidata.org/wiki/Q6269489","display_name":"Joint audit","level":4,"score":0.0},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.23919/icact.2019.8701931","is_oa":false,"landing_page_url":"https://doi.org/10.23919/icact.2019.8701931","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 21st International Conference on Advanced Communication Technology (ICACT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.699999988079071}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":1,"referenced_works":["https://openalex.org/W2576351625"],"related_works":["https://openalex.org/W2379831727","https://openalex.org/W2099785322","https://openalex.org/W2360780502","https://openalex.org/W2562041511","https://openalex.org/W2497647994","https://openalex.org/W2383770576","https://openalex.org/W2112354032","https://openalex.org/W2392777754","https://openalex.org/W3215158158","https://openalex.org/W2547664145"],"abstract_inverted_index":{"To":[0],"protect":[1],"sensitive":[2],"information":[3],"of":[4,22,64,133,138,173],"an":[5,81,117],"organization,":[6],"we":[7],"need":[8],"to":[9,34,42,84],"have":[10],"proper":[11],"access":[12,24,46,87],"controls":[13,88,103,126],"since":[14,62],"several":[15],"data":[16],"breach":[17],"incidents":[18,155],"were":[19],"happened":[20],"because":[21],"broken":[23],"controls.":[25],"Normally,":[26],"the":[27,69,86,90,97,102,136,146,153,171,174],"IT":[28],"auditing":[29,53,70,134,147],"process":[30,83],"would":[31,168],"be":[32,40,157,164],"used":[33],"identify":[35],"security":[36,125,129],"weaknesses":[37],"and":[38,58,100,142,151,160],"should":[39],"able":[41],"detect":[43],"any":[44],"potential":[45],"control":[47],"violations":[48],"in":[49,105],"advance.":[50],"However,":[51],"most":[52],"processes":[54],"are":[55,66,135],"done":[56,149],"manually":[57],"not":[59],"performed":[60,72],"consistently":[61,150],"lots":[63],"resources":[65],"required;":[67],"thus,":[68],"is":[71,121,148],"for":[73,111,123],"quality":[74],"assurance":[75],"purposes":[76],"only.":[77],"This":[78],"paper":[79],"proposes":[80],"automated":[82,118],"audit":[85,98,113,119],"on":[89],"Windows":[91],"server":[92],"operating":[93],"system.":[94,175],"We":[95],"define":[96],"checklist":[99],"use":[101],"defined":[104,128],"ISO/IEC":[106],"27002:2013":[107],"as":[108],"a":[109],"guideline":[110],"identifying":[112],"objectives.":[114],"In":[115],"addition,":[116],"tool":[120],"developed":[122],"checking":[124],"against":[127],"policies.":[130,144],"The":[131],"results":[132],"list":[137],"automatically":[139],"generated":[140],"passed":[141],"failed":[143],"If":[145],"automatically,":[152],"intrusion":[154],"could":[156,163],"detected":[158],"earlier":[159],"essential":[161],"damages":[162],"prevented.":[165],"Eventually,":[166],"it":[167],"help":[169],"increase":[170],"reliability":[172]},"counts_by_year":[{"year":2020,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}