Moreover, the
host is also able to re-route the messages to corresponding components through analysing
different configurations.
Security.Requirements
Security Requirements of Network-Based Applications
Kall (2003) and Kall and Perkin (2003) have grouped application level security into five categories:
authentication, authorization, confidentiality, data integrity, and non-repudiation.
Authentication aims to verify the identity of the user, so the verifier can know who the user
really is. The types of identities can be various. For instance, a combination of username and
password is the easiest and most popular method, used in most ???stand-alone??? applications.
The Kerberos system, developed by the Massachusetts Institute of Technology (MIT), is
another option. Hardware-supported technologies, such as the smart-card card system or
the biological verification system, are also available. Since the hardware-supported systems
Lee
Copyright ?© 2007, Idea Group Inc. Copying or distributing in print or electronic forms without written permission
of Idea Group Inc. is prohibited.
need additional equipment (such as a card reader and a fingerprint scanner), they are not
widely used for the network-based environment.
Pages:
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426