| Author |
Message
|
| tapak |
 Posted: Mon Oct 02, 2006 5:29 am Post subject: Sample programs on security exit in Java |
 |
|
Centurion
Joined: 26 Oct 2005
Posts: 149
Location: Hartford,CT
|
Can we develop security exit in Java for the server end. or it is only supported in C? If yes , can you please direct me to resources which help me in developing a security exit in Java for the server end.
Basically I want to create a security exit for server connection channel which validates the userid and password used for creating the connection.
Any inputs are appreciated. |
|
| Back to top |
|
 |
| RogerLacroix |
| Posted: Mon Oct 02, 2006 8:34 pm Post subject: Re: Sample programs on security exit in Java |
|
|
Jedi Knight
Joined: 15 May 2001
Posts: 3264
Location: London, ON Canada
|
| tapak wrote: |
| Can we develop security exit in Java for the server end. or it is only supported in C? |
Server-side is C only.
Regards,
Roger Lacroix
Capitalware Inc.
_________________
Capitalware: Transforming tomorrow into today.
Connected to MQ!
Twitter |
|
| Back to top |
|
|
| jefflowrey |
| Posted: Tue Oct 03, 2006 1:54 am Post subject: |
|
|
Grand Poobah
Joined: 16 Oct 2002
Posts: 19981
|
Just use SSL.
_________________
I am *not* the model of the modern major general. |
|
| Back to top |
|
|
| tapak |
| Posted: Tue Oct 03, 2006 6:33 am Post subject: |
|
|
Centurion
Joined: 26 Oct 2005
Posts: 149
Location: Hartford,CT
|
I feel SSL is a little overhead (creating and sending certificates to large no of clients ) unless that level of security is required.
Is there any particaulr reason IBM decided not provide API for security exit in Java at the server end. ?
May be I will try to implement the same in C. Can anyone point to sample programs on security exit which validates userid and pasword send from the client.
. |
|
| Back to top |
|
|
| RogerLacroix |
| Posted: Tue Oct 03, 2006 9:29 am Post subject: |
|
|
Jedi Knight
Joined: 15 May 2001
Posts: 3264
Location: London, ON Canada
|
| tapak wrote: |
| Is there any particaulr reason IBM decided not provide API for security exit in Java at the server end. ?. |
Because the server-side is not Java. Therefore, a JVM would need to be invoked each time a connection is made. It would be slow and painful.
| tapak wrote: |
| May be I will try to implement the same in C. Can anyone point to sample programs on security exit which validates userid and pasword send from the client. |
The first thing you need to do is read AND understand the following post:
http://www.mqseries.net/phpBB2/viewtopic.php?t=20523
Secondly, there are no samples because every platform is different / completely different in most cases.
Third, have you realized that you will need to learn cryptography and encryption too!!
You can expect to hundreds and hundreds of hours creating / building a solution and possibly thousands of hours if it involves multiple cross-platform solutions.
Does your manager know / understand how big of a project this is?
Have you thought about simply buying this particular solution rather than building it? Capitalware's MQ Authenticate User Security Exit does exactly what you have described. For more information about MQAUSX, go to:
http://www.capitalware.biz/mqausx_overview.html
Note: You only pay for server-side licenses - you get free unlimited client-side licenses.
Regards,
Roger Lacroix
Capitalware Inc.
_________________
Capitalware: Transforming tomorrow into today.
Connected to MQ!
Twitter |
|
| Back to top |
|
|
| jefflowrey |
| Posted: Tue Oct 03, 2006 9:44 am Post subject: |
|
|
Grand Poobah
Joined: 16 Oct 2002
Posts: 19981
|
| tapak wrote: |
| I feel SSL is a little overhead (creating and sending certificates to large no of clients ) unless that level of security is required. |
If you're trying to actually authenticate the client user, you really need SSL. Or something like WebSphere MQ Extended Security edition.
Otherwise, all you are doing is authenticating the user that the client DECIDED to send. And as Roger points out, with Java that might be no user at all.
_________________
I am *not* the model of the modern major general. |
|
| Back to top |
|
|
| tapak |
| Posted: Wed Oct 04, 2006 6:26 am Post subject: |
|
|
Centurion
Joined: 26 Oct 2005
Posts: 149
Location: Hartford,CT
|
Hi Roger and Jeff ,
Thanks for the detailed inputs . I forwarded the details to my manager.
Appreciate very much your time .
Thanks, Deepak |
|
| Back to top |
|
|
|
|
