An Authorization Service using.NET Passport ™ as underlying Authentication Scheme Bar-Hen Ron Hochberger Daniel Winter 2002 Technion – Israel Institute.

Slides:



Advertisements
Similar presentations
CLS Process Variable Database By: Diony Medrano. CLS PV Database - Topics Background Design Constraints Design and Implementation Benefits and Future.
Advertisements

Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.
Online Examination System CLASS MARKER University of Pune Helios Cloud Services.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 13: Administering Web Resources.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.
14.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
An Authorization Service using.NET Passport ™ as underlying Authentication Scheme Bar-Hen Ron Hochberger Daniel Winter 2002 Technion – Israel Institute.
IT:Network:Applications VIRTUAL DESKTOP INFRASTRUCTURE.
Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Access Control in IIS 6.0 Windows 2003 Server Prepared by- Shamima Rahman School of Science and Computer Engineering University of Houston - Clear Lake.
Technion – Israel Institute of Technology Department of Electrical Engineering Software Lab Remote Mailbox based on.NET technology Michael and Eugene Shamis.
Hands-On Microsoft Windows Server Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
Remote Assistance  Using this program you can allow someone to work on your computer, chat with you and view your screen with your permission  The other.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
Dr. John P. Abraham Professor UTPA.  Particularly attacks university computers  Primarily originating from Korea, China, India, Japan, Iran and Taiwan.
1 SAMBA. 2 Module - SAMBA ♦ Overview The presence of diverse machines in the network environment is natural. So their interoperability is critical. This.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,
Guide to Operating System Security Chapter 9 Web, Remote Access, and VPN Security.
Module 12: Designing an AD LDS Implementation. AD LDS Usage AD LDS is most commonly used as a solution to the following requirements: Providing an LDAP-based.
Remote OMNeT++ v2.0 Introduction What is Remote OMNeT++? Remote environment for OMNeT++ Remote simulation execution Remote data storage.
Chapter 9: Novell NetWare
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
1 © 2006 Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Confidential Configuring Attendant Console.
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
COMP1321 Digital Infrastructure Richard Henson February 2014.
1 Web services and security ---discuss different ways to enforce security Presenter: Han, Xue.
Module 11: Remote Access Fundamentals
DIT314 ~ Client Operating System & Administration CHAPTER 5 MANAGING USER ACCOUNTS AND GROUPS Prepared By : Suraya Alias.
SQL Server Security By Mattias Lind For PASS Security VC.
How to use Remote Desktop and Remote Support. What is remote desktop? Remotely control your computer from another office, from home, or while traveling.
Dr. Mustafa Cem Kasapbaşı Security in ASP.NET. Determining Security Requirements Restricted File Types.
Dale Smith COSC 4010 Computer Security Authentication & Security in the.NET environment.
Lieberman Software Random Password Manager & Two-Factor Authentication.
Module 11: Securing a Microsoft ASP.NET Web Application.
Slide 1 ASP Authentication There are basically three authentication modes Windows Passport Forms There are others through WCF You choose an authentication.
Lecture 5: User Accounts & Directory Service Instructor: Dr. Najla Al-Nabhan
MEMBERSHIP AND IDENTITY Active server pages (ASP.NET) 1 Chapter-4.
Permissions Lesson 13. Skills Matrix Security Modes Maintaining data integrity involves creating users, controlling their access and limiting their ability.
1 Microsoft Windows 2000 Network Infrastructure Administration Chapter 6 Resolving Network Host Names.
IIS and.Net security -Vasudha Bhat. What is IIS? Why do we need IIS? Internet Information Services (IIS) is a Web server, its primary job is to accept.
Virtualization Technology and Microsoft Virtual PC 2007 YOU ARE WELCOME By : Osama Tamimi.
Security E-Learning Chapter 08. Security Control access to your web site –3 Techinques for Identifying users Giving users access to your site Securing.
Configuring and Deploying Web Applications Lesson 7.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
Rights Management for Shared Collections Storage Resource Broker Reagan W. Moore
Module 14: Advanced Topics and Troubleshooting. Microsoft ® Windows ® Small Business Server (SBS) 2008 Management Console (Advanced Mode) Managing Windows.
SQL Server 2012 Session: 1 Session: 4 SQL Azure Data Management Using Microsoft SQL Server.
Chapter 9 Lecture 4. NetWare Novell’s network operating system Biggest competitor – Microsoft Windows.
COMP1321 Digital Infrastructure Richard Henson March 2016.
Presented by Deepak Varghese Reg No: Introduction Application S/W for server load balancing Many client requests make server congestion Distribute.
WARCS (Wide Area Remote Control for SPring-8)‏ A. Yamashita and Y.Furukawa SPring-8, Japan Control System Cyber-Security Workshop (CS)2/HEP Oct
Speed Cash System. Purpose of the Project  online Banking Transaction Information.  keeping in view of the distributed client server computing technology,
1 Remote Installation Service Windows 2003 Server Prof. Abdul Hameed.
Secure Connected Infrastructure
Investigation authentication using AAF for the CVL on NeCTAR
File System Implementation
Configuring Attendant Console
Benefits of Using Domain Name System (DNS)
Database Driven Websites
NTC 326 Great Wisdom/tutorialrank.com. NTC 326 All Assignments (New Syllabus) For more course tutorials visit NTC 326 Assignment.
Module 1: Overview of Systems Management Server 2003
Ch 1 .Installing and configuring SQL Server 2005
Presentation transcript:

An Authorization Service using.NET Passport ™ as underlying Authentication Scheme Bar-Hen Ron Hochberger Daniel Winter 2002 Technion – Israel Institute of Technology

Purpose Implementing a passport authentication service compliant with Microsoft unique password idea Creating participating sites which support multiple levels of access Finding an interesting real-world application and integrating it into the application

Design issues Support of multiple kind of servers (e.g. University, Bank…) A configuration s/w written for the use of a super-user who will parameterize the particular server he wants to build Ability for an administrator to dynamically change permissions at any time and for any kind of user

Database One database for the user’ s permissions, located in each server A standard data repository for each server (storing grades, cash etc…) Data repository Permissions repository

Authentication issues Use of.Net Passport authentication paradigm furnished by Microsoft: users have an account on Microsoft Passport: a universal login name and a password used for accessing each of the participating sites users are identified by a Unique Identity Number (UID) stored in a cookie on the user’ s local computer by Microsoft Each participating server knows and checks the UID stored in the cookie When the cookie is absent on the user’ s local computer, the server redirects the user to Microsoft Passport authentication site

Scenario  New users are registered to a participating site by the administrator of this site only  A user attempts to connect a given site by typing its IP address  The remote server checks the presence of a cookie in the user’ s local computer cache:  If there is a valid cookie in the user’ s computer, then the server connects the user to the site  Otherwise, the user is redirected to Microsoft Passport’ s site, types its login and password, and if the authentication succeeds Microsoft sends him a cookie which can now be checked by the participating site  The user can now surf the site according to its permissions

Tools and platform Environment: The application will be developed on.Net platform using the C# programming language Platforms:  The application will be developed on Windows XP  The servers will be installed on Windows XP, and possibly UNIX and Linux Database tools:

General design GUI SERVER Client Microsoft Passport Data repository Permissions repository

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.