Red Hat NETSCAPE ENTERPRISE SERVER 6.0 - PROGRAMMER GUIDE TO SERVLETS Guida Utente Pagina 300
- Pagina / 328
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
Chapter 15: User Authentication, SOAP Digital Signature and XML Encryption for Web Services (SOAP)
15-26
Verifying the SOAP Digital Signature
• Digest algorithm
− http://www.w3.org/2000/09/xmldsig#sha1
• Signature algorithm
− http://www.w3.org/2000/09/xmldsig#dsa-sha1
− http://www.w3.org/2000/09/xmldsig#rsa-sha1
• Canonicalization algorithm
− http://www.w3.org/TR/2001/REC-xml-c14n-20010315
− http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
− http://www.w3.org/2001/10/xml-exc-c14n#
− http://www.w3.org/2001/10/xml-exc-c14n#WithComments
Notes
The XML canonicalization algorithm that does not remove comments is supported. However, since the
format of "#xpointer (xpointer type)" is not supported to specify the signature target, comments cannot
be included in the signature target.
• Transformation algorithm
− http://www.w3.org/2000/09/xmldsig#base64
− http://www.w3.org/TR/1999/REC-xpath-19991116
− http://www.w3.org/2000/09/xmldsig#enveloped-signature
− http://www.w3.org/2002/06/xmldsig-filter2
Encryption using XML Encryption/ Decryption Using XML Encryption
• Symmetric key encryption algorithm
− http://www.w3.org/2001/04/xmlenc#tripledes-cbc
• Public-key encryption algorithm
− http://www.w3.org/2001/04/xmlenc#rsa-1_5
Note
In high-reliability functions, because there is no function for saving a symmetric key, the symmetric key
encryption algorithm and the public-key encryption algorithm should be used together.
- Security System Guide 1
- Trademarks 2
- Preface 3
- Table of Contents 7
- Part I 21
- Security Risks and Measures 21
- Chapter 1 23
- Security Risks 23
- Operation Tool 24
- Resource Possible threat 25
- J2EE Application 27
- Resources to be Protected 28
- Possible Security Risks 29
- Possible Countermeasures 31
- Web Services 33
- Database Linkage Service 34
- Periodic Backup 40
- OLTP Function 41
- Smart Repository 46
- Potential Security Threats 47
- Password Encryption 48
- Periodic Change of Passwords 48
- Operation by Limited Users 48
- Periodic Data Backup 49
- Interstage Single Sign-on 50
- Possible Threats 51
- Security Measures 52
- Application Programming 55
- Applying Patches 56
- Multi Server Management 57
- Configuration Model 58
- Threat Prevention 61
- Chapter 1: Security Risks 66
- Chapter 2 67
- Common Security Measures 68
- Notes on User Accounts 69
- Notes on Communication Data 69
- (Interstage HTTP Server) 70
- (InfoProvider Pro) 75
- Notes on the Use of Sessions 76
- SSL Encryption 80
- Definition 82
- About Authorization Settings 87
- About Errors and Exceptions 87
- Notes on IJServer Execution 89
- Repository 90
- Security Role Settings 92
- Part II 95
- Chapter 3 97
- Interstage HTTP Server 97
- Types of Authentication 98
- IP Access Control 99
- Online Collation 100
- Registering a User Password 101
- Relating Directives 103
- AuthName 104
- AuthType 104
- AuthUserFile 105
- <Directory> 105
- Require 106
- Operation without Using SSL 112
- Operation Using SSL 112
- Creating Entries 114
- Item Description 115
- AddModule 125
- AuthLDAPbasedn 125
- AuthLDAPBindDN 126
- AuthLDAPBindPassword 127
- AuthLDAPCertPath 127
- AuthLDAPEnabled 128
- AuthLDAPHost 128
- AuthLDAPPort 129
- AuthLDAPSecure 129
- AuthLDAPSlotPath 130
- AuthLDAPTknLbl 131
- AuthLDAPTknPwd 131
- LoadModule 134
- ServerRoot 136
- Part III 139
- Firewall and Proxy Server 139
- Chapter 4 141
- HTTP Tunneling 141
- HTTP Tunneling Mechanism 142
- HTTP Gateway Environment) 143
- Operating HTTP Tunneling 143
- HTTP Tunneling Setup 144
- Writing HTML 147
- Setting up HTTP Tunneling 148
- Parameter Name Meaning 149
- Java Applets 150
- Chapter 4: HTTP Tunneling 154
- Chapter 5 155
- HTTP Tunneling of J2EE 155
- Environment 157
- Property 157
- Meaning 157
- Chapter 6 161
- Linkage of the Proxy 161
- Part IV 163
- Authentication and Encrypted 163
- Chapter 7 165
- Certificate including 167
- Certificate without 167
- CA (Certification Authority) 168
- Configuring Environments 169
- Using PKCS#12 Data 170
- Registering a CRL 176
- Importing the PKCS#12 data 179
- Certificate Management 183
- Operation Begins 184
- Deleting a Certificate 184
- Chapter 8 185
- Command 185
- Management Environment 186
- Resource Registration 196
- Command Description 199
- Chapter 9 201
- Registering the User PIN 203
- General Operation of SSL 204
- CustomLog 213
- DocumentRoot 214
- ErrorLog 215
- LogFormat 217
- ScriptAlias 219
- ServerAdmin 220
- ServerName 220
- SetEnvIf 222
- SSLCertName 222
- SSLCICACertName 223
- SSLCipherSuite 224
- SSLEnvDir 226
- SSLExec 226
- SSLSlotDir 227
- SSLTokenLabel 227
- SSLUserPINFile 228
- SSLVerifyClient 229
- SSLVersion 230
- <VirtualHost> 232
- Chapter 10 233
- Operating the SSL Linkage 237
- Reference 238
- Command Definition 239
- Editing config File 240
- How to Use SSL with J2EE 243
- Chapter 11 243
- Chapter 12 247
- Repository Client and Server 249
- Part V 251
- Chapter 13 253
- Digital Signature Function 254
- Function 256
- SOAP Messages 257
- Communication via the Proxy 258
- Chapter 14 259
- Services (SOAP) 259
- Property name Value 260
- Operation 262
- Certificate Environment 263
- Using a CORBA/SOAP Gateway 273
- Chapter 15 275
- Setting User Information 278
- Preparing a Private-key 284
- Preparing a Site Certificate 290
- Preparing a Private Key 294
- Fault Codes 297
- Fault code Explanation 298
- Supported Algorithms 299
- Chapter 16 303
- System) 304
- Part VI 317
- Service 317
- Chapter 17 319
- Chapter 18 321
Prodotti e manuali riguardandi Server Red Hat NETSCAPE ENTERPRISE SERVER 6.0 - PROGRAMMER GUIDE TO SERVLETS
Server Red Hat NETSCAPE DIRECTORY SERVER 6.2 - GATEWAY CUSTOMIZATION Guida di Installazione
(142 pagine)
(142 pagine)
(32 pagine)
Server Red Hat NETSCAPE ENTERPRISE SERVER 6.1 - PROGRAMMER GUIDE TO SERVLETS Guida di Installazione
(72 pagine)
(72 pagine)
Server Red Hat NETSCAPE ENTERPRISE SERVER 6.0 - PROGRAMMER GUIDE TO SERVLETS Manuale di Installazione
(92 pagine)
(92 pagine)
© 2020, manymanuals.it. Tutti i diritti riservati | 0.030 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale