Upload File

basic security concepts essential for all architects

  • Home
  • Business
  • Basic security concepts essential for all architects
1

Click here to load reader

Upload: debasis-chakraborty

Post on 25-Jun-2015

95 views

Category:

Business


0 download

Report

DESCRIPTION

Basic security concepts essential for all architects

TRANSCRIPT

Page 1: Basic security concepts essential for all architects

Basic  Security  Concepts  essential  for  all  Architects      

 It is quite shame that a number Industry professionals including a large number of architects don't understand the difference between identity, Authentication and authorisation. Allow me to describe it very simple way - Your identity is verified through a process/magic call "Authentication". Identity is typical, that you present to verify your authentication (username/password, fingerprint, and retina. You are Mr Bill, but how someone will verify your Identity, it is through Authentication. Secondly, still a high portion of Architects in BFS domain believes that we can authenticate through/via database/master data. Let me correct it very simple way " No banking products identified a person through database, for user authentication, the industry solution is LDAPv3, and never use DB. Again, majority of professionals including architects doesn't understand that you can get an Authorisation Token through Web Single Sign On. SAML2.0, OpenID, OAUTH2.0 are capable to contain various authorisation parameters such as authorisation, group membership, entitlement etc.  So -> Key Points KP1. Authentication (through valid Identity) KP2. Your Identity will be store in to LDAPv3/meta Data " it will never store in to Database". For details information please read "Database Vs. LDAPv3" KP3. Once you have identified correctly, your profile can be retrieve from database " so profile can be store in to database "Master Data" KP4. Once you have Identified properly, i.e. after successful authentication, next step will be Authorisation, which will give you a soft token, i.e. what all operations you are entitle to do so such as "can you access all floor, can you open a locker, can you access VIP area etc.?” KP5. Again LDAPv3 can store your authorisation parameter such as ACL, group membership, roles, policies etc. During this process you can also get a SSO token " in simple example, a single key/hob that will give you access to more than 1 buildings" KP6. Typical Authorisation token are SAML2.0, OUATH2.0, OpenID etc. +KP – Key point

ESSENTIAL CONCEPTS IN SECOND

Essential Concepts in Finance - Textbook Media...Essential Concepts in Finance Essential Concepts in Finance are those subjects that you need to understand in order for the financial

12 MORE ESSENTIAL ARCHITECTS - pearsoncmg.comptgmedia.pearsoncmg.com/images/9780321909473/samplepages/978032190… · 12 more essential skills for software architects / Dave Hendricksen

Top International Architects - Design Concepts in Architecture

XP New Perspectives on Essential Computer Concepts 1 New Perspectives on Essential Computer Concepts, 5 th Edition

Essential Concepts Profile

Structural Concepts and Systems for Architects

Essential Concepts in Toxicology - BS Publications Conc… · Essential Concepts in Toxicology P K Gupta 2014 978-81-7800-319-1 388 pp HB Rs. 1795.00 Essential Concepts in Toxicology:

ESSENTIAL CONCEPTS OF METABOLISM

Understanding Essential Computer Concepts

Essential concepts

Chapter 8 Metabolism Essential Concepts

1. essential concepts for critical thinking

Patricia Berry, M.A. CSAP Essential Concepts for [email protected] 1 Essential Concepts for School for Prevention First BUILDING THE 5 ESSENTIAL

Your Letter of Instruction: Essential Concepts: Details, Instructions and Concepts

Dave Larue - Essential Bass Concepts

Ten Basic Concepts for Architects and Other Building Designer

12 MORE ESSENTIAL ARCHITECTS · 2014-08-13 · 12 MORE ESSENTIAL SKILLS FOR SOFTWARE ARCHITECTS DAVE HENDRICKSEN Upper Saddle River, NJ • Boston • Indianapolis • San Francisco

Essential Concepts of Projective Geomtry

120 Essential Concepts in Physics-Ans

CONCEPTS SKILLS ESSENTIAL QUESTIONS SUGGESTED …

12 Essential Skills for Software Architects - …ptgmedia.pearsoncmg.com/images/9780321717290/samplepages/... · 12 essential skills for software architects / Dave ... Upper Saddle

Architecture Structure Concepts for Architects

ESSENTIAL CONCEPTS FOR BIOMEDICAL COMPUTING

Essential Computer Concepts

Structural Concepts and System for Architects

12 Essential Skills for Software Architects

Accounting Information Systems: Essential Concepts and

Essential Concepts of Bearing Technology

PowerPoint Presentation of Essential Concepts PowerPoint Presentation of Essential Concepts Chalice Tillis LEM 511

Essential biofi lm concepts & phenomena

Essential Concepts for School for Prevention First Patricia Berry, M.A. CSAP Essential Concepts for School ecschool7 @gmail.co m 1 BUILDING THE 5 ESSENTIAL

Essential Concepts in SLA

Section 1 Essential Electrical Concepts

Essential OO Concepts