JAVA DEVELOPMENT INDIA
An Excellone Telious Venture
India: +91 98422 26200
Java Authentication and Authorisation Service (JAAS)
The Java Authentication and Authorization Service (JAAS) inorder to provide two services, namely authentication and authorization. With the rapid expansion of the ecommerce frontiers, big corporates and the big enterprises, who became the key players in the arena demanded enterprise-scalable functionality for their corporate Internet and intranet environments. But such functionalities had to come with fool-proof security. Here security means techniques for ensuring that data stored in a computer or passed between computers is not compromised.
Most security measures involve proof material and data encryption. It is to address this exact security issue that Sun introduced the Java Authentication and Authorization Service (JAAS). JAAS infrastructure can be divided into two main components: an authentication component and an authorization component. The Java Authentication and Authorization Service (JAAS) is a standard extension to the Java 2 SDK. Java 2 provides codesource-based access controls. It lacks, however, the ability to additionally enforce access controls based on who runs the code. JAAS provides a framework that augments the Java 2 security model with such support. The authentication service is pluggable, which means that an application can remain independent of the authentication techniques used, that authentication modules can be upgraded easily, and that an application can use multiple forms of authentication concurrently.
JAAS - The Advantages
JAAS is based on the Pluggable Authentication Modules (PAM) model. Pluggable authentication confers several benefits. It allows applications to provide for single sign-on across multiple security domains and it allows for easy upgrading of a given login module. In addition, it allows for other modules to be added as necessary without changing client code. In JAAS the login modules that an application uses are configured externally to that application. That configuration is made available to the application, which simply calls a single login method to perform the login.
Each module then gathers the necessary data to perform the login. Within an application, making use of JAAS for authentication and the application creates a new LoginContext and calls its login method. Each LoginModule is then executed as necessary, depending on the options in the configuration file. The authentication process under JAAS is reasonably failsafe and secure. Using JAAS to leverage the SecurityManager for authorization is entirely commensurate with the java security model. JAAS works both on client-side and server-side applications.
What Java Development India Offer?
Java Development India offers JAAS development, JAAS consulting and JAAS related solutions from our offshore software development outsourcing centre at Kochi, Kerala in India.
|
In the Indian IT SME segment, Java Development India has a remarkably strong team with expertise in Java/JEE, J2ME and Web services. The rich experience gathered across various industries and technologies over the years has resulted in Java Technologies and Database Technologies such as Oracle, PostgreSQL, MySQL and MS SQL, being our main area of focus. Our range of services include Custom software/web development, Product development, Maintenance and Testing.
Proficient in English, our developers and support staff employ well-accepted practice approach, consulting standards and services irrespective of the project size. The long years of expertise and exposure of having worked with clients from US, UK, Denmark, Australia and India since 1999 has enabled us to adopt some of the best offshore outsourcing practices.
