Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright © Wondershare Software نام و نام ‌ خانوادگی علی عبدلی 88131056 استاد درس آقای دکتر نورحسینی.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Copyright © Wondershare Software نام و نام ‌ خانوادگی علی عبدلی 88131056 استاد درس آقای دکتر نورحسینی."— Presentation transcript:

1 Copyright © Wondershare Software نام و نام ‌ خانوادگی علی عبدلی 88131056 استاد درس آقای دکتر نورحسینی

2 GameTestExam

3 A server system as a repository of objects available to a variety of unrelated distributed clients Need to restrict access based on the identity of the requesting client The Authenticator pattern describes a general mechanism for providing identification and authentication to a server from a client.

4 The pattern operates by offering an authentication negotiation object which then provides the protected object only after authentication is successful

5 Intent – The Authenticator pattern performs authentication of a requesting process before deciding access to distributed objects.

6 The services of commonly used distributed object systems, generally allow any requestor with access to the registry to obtain any distributed object whose name is known. Some means to grant or deny access to individual requestors using a login-and-authenticate protocol is necessary for distributed object systems that service varied requests.

7 The clients may have different rights on the remote objects. Before deciding access, the requestor must be authenticated

8 The Authenticator pattern is useful – when identification and authentication is required for access to remote objects; – when a variety of authentication methods may be used; – when additional protocol negotiations (encryption selection, software version supported, etc.) is required prior to obtaining a remote object; and the underlying distributed system does not support these requirements.

9 The Authenticator pattern uses a distributed object accessible remotely that will identify and authenticate the requesting agent (“requestor”) and possibly perform some protocol negotiation. If and only if the authentication and negotiation is successful will the authenticating object create and make available another distributed object representing the object that the requestor really wants.

10 Concrete Authenticator Authenticate(s); Concrete ObjectFactory Create(); RemoteObject Authenticator Authenticate(s); Get(); ObjectFactory Create(); Create abstract class defines the interface used to authenticate a connection or negotiate session Parameters An application defines a concrete class implementing this interface to provide a specific authentication or negotiation protocol The resulting class should be instantiated and registered with the applicable naming service as a distributed object accessible throughout the network The authenticate method is used by the requestor after obtaining a reference to the Authenticator object When authentication is successful, the Authenticator class creates an instance of a distributed object that can now be accessed by the remote requestor using the get method. This abstract class contains only one method, create The implementation of this method creates the protected object It may also perform other actions specified by the Authenticator as a result of the negotiations.

11 Initialization. The Authenticator object must be registered with the distributed object system’s naming service for remote access. Connection When a remote object, a requestor, obtains a reference to the Authenticator object, it uses the authenticate method to pass a string to the Authenticator implementation. Creation When the Authenticator implementation recognizes a successful authentication, it creates the protected object in preparation for handing that to the requestor as a response to the get method.

12 An option for applications that require complex identification and authentication. The Authenticator pattern allows for the implementation of different authentication methods, thus allowing multiple clients to use their own authentication methods. An option for applications with complex protocol negotiation. An application may require some negotiation with the server before it can be granted access to an object.

13 Security. – The object factory class is hidden within the Authenticator implementation for security. The Authenticator implementation is a remote object accessible to the untrusted requestor client, the object factory is not a remote object and is therefore inaccessible to the client. Negotiation. – The design of the authentication and negotiation must take into account concurrent access from multiple clients (if, for example, the Authenticator is a Singleton), the possibility of dropping a network connection or timing out, incorrect or out of sequence responses, and other unintentional or intentional failures.

14 Parameterized object creation. – It may be necessary to parameterize the creation of an object by the object factory.

15 Interface of ObjectFactory

16

17

18

19

20 Authentication is just one aspect of security. It must be complemented with some authorization mechanism that determines role rights or a similar security mechanism. a pattern such as the Bodyguard could be used for that purpose. The Authenticator pattern is a variation on the Abstract Factory pattern in that it is basically a factory class. However, instead of an Abstract Factory implementation that statically determines what object to create, the Authenticator uses an iterative negotiation to determine if an object (and perhaps also what object) it should provide.

21 F. L. Brown, J. DiVietri, “The Authenticator Pattern”, Pattern Languages of Programs,1999.

22

23 Copyright © Wondershare Software

Download ppt "Copyright © Wondershare Software نام و نام ‌ خانوادگی علی عبدلی 88131056 استاد درس آقای دکتر نورحسینی."

Similar presentations

Systems Architecture Use Case Diagram, System Overview, Class Diagram Design Patterns (weve used) Refactorings (weve used) Table of Contents.

Systems Architecture Use Case Diagram, System Overview, Class Diagram Design Patterns (weve used) Refactorings (weve used) Table of Contents.
Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.

External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.
T O K ILL A S INGLETON F ACTORY M ETHOD P ATTERN Josh Mason 6/18/09.

T O K ILL A S INGLETON F ACTORY M ETHOD P ATTERN Josh Mason 6/18/09.
Copyright © 2001 Qusay H. Mahmoud RMI – Remote Method Invocation Introduction What is RMI? RMI System Architecture How does RMI work? Distributed Garbage.

Copyright © 2001 Qusay H. Mahmoud RMI – Remote Method Invocation Introduction What is RMI? RMI System Architecture How does RMI work? Distributed Garbage.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
28.2 Functionality Application Software Provides Applications supply the high-level services that user access, and determine how users perceive the capabilities.

28.2 Functionality Application Software Provides Applications supply the high-level services that user access, and determine how users perceive the capabilities.
A brief look at CORBA. What is CORBA Common Object Request Broker Architecture developed by OMG Combine benefits of OO and distributed computing Distributed.

A brief look at CORBA. What is CORBA Common Object Request Broker Architecture developed by OMG Combine benefits of OO and distributed computing Distributed.
(Remote Access Security) AAA. 2 Authentication User named flannery dials into an access server that is configured with CHAP. The access server will.

(Remote Access Security) AAA. 2 Authentication User named "flannery" dials into an access server that is configured with CHAP. The access server will.
WNT Client/Server SDK Tony Vaccaro CS699 Project Presentation.

WNT Client/Server SDK Tony Vaccaro CS699 Project Presentation.
Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.

Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.
COS 420 DAY 24. Agenda Assignment 5 posted Chap 22-26 Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.

COS 420 DAY 24. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.
DISTRIBUTED PROCESS IMPLEMENTAION BHAVIN KANSARA.

DISTRIBUTED PROCESS IMPLEMENTAION BHAVIN KANSARA.
Design Patterns academy.zariba.com 1. Lecture Content 1.What are Design Patterns? 2.Creational 3.Structural 4.Behavioral 5.Architectural 6.Design Patterns.

Design Patterns academy.zariba.com 1. Lecture Content 1.What are Design Patterns? 2.Creational 3.Structural 4.Behavioral 5.Architectural 6.Design Patterns.
Client Server Model and Software Design TCP/IP allows a programmer to establish communication between two application and to pass data back and forth.

Client Server Model and Software Design TCP/IP allows a programmer to establish communication between two application and to pass data back and forth.
Hands-On Microsoft Windows Server 2008 1 Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.

Hands-On Microsoft Windows Server Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.
Pattern Abstract Factory

Pattern Abstract Factory
Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. The Factory Method Design Pattern (1) –A creational design.

Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. The Factory Method Design Pattern (1) –A creational design.
Chapter 10: Authentication Guide to Computer Network Security.

Chapter 10: Authentication Guide to Computer Network Security.
Singleton Christopher Chiaverini Software Design & Documentation September 18, 2003.

Singleton Christopher Chiaverini Software Design & Documentation September 18, 2003.

Similar presentations

Ads by Google