Thursday Jan 27, 2011

Change in the default digest algorithm in FileRealms (GF 3.1)

In GlassFish 3,1, the digest algorithm for storing file users in the keyfiles for the FileRealm based realms has been changed to SHA-256 from the previous SHA-1. This includes the default realm - file and the admin-realm. The change can be observed in respective keyfiles - keyfile and admin-keyfile - The SSHA256 tag and a longer digest  than the earlier SSHA tag (representing SHA-1 algorithm).

 Keyfile and admin-keyfile in GlassFish 3.1

test;{SSHA256}RsvY2gBprLirxbEgUklqKGWiH31uDnMgyL54eGGgNs48PpYVUkILtg==;

admin;{SSHA256}yRrrmQ0GxF6U8lp0A8EZvphpdC5dsVPMdreZDh3tOsFVMMk57tVz4w==;asadmin

Keyfile and admin-keyfile prior to GlassFish 3.1

 test;{SSHA}jTFkVn/hPKjzsI1WsdlihHCL+5rh6++KTEqfYg==;

admin;{SSHA}d18x+nm1GkaoXQpT3NiecZaBwZSrGm50disn0A==;asadmin

 Support is provided for users created in versions of GlassFish prior to GlassFish 3.1 and upgraded to the latest 3.1. The decoding mechanism interprets the algorithm to be used for decoding the digest. However while creating new users in the latest version (3.1), only SHA-256 is employed. This change has been effected since SHA-256 is known to provide better security than SHA-1. To the end-user, there is no difference in the usage of file user passwords.

Friday Sep 17, 2010

A Simple Secure Embedded Web Test Client in GlassFish v3.1

Following the posts (i), (ii) , (iii) related to deploying secure ejb applications in the Glassfish embedded mode, this post is about deploying a secure web-application in GlassFish in the embedded mode. Similar to the EmbeddedEjbContainer API, the EmbeddedWebContainer API in glassfish v3.1 can be used to deploy webapps. The deployed web-app could either be accessed using a URLConnection in the same EmbeddedTest Client or from a browser (provided the Embedded server with the Container is still running).In this post, we look at deploying a secure webapp (web-app protected by a user-data constraint)

Consider a simple webapp that is protected by a user-data constraint.

        <user-data-constraint>
            <description/>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>

To test this war file, one could write a simple Embedded Web Test Client that uses the EmbeddedWebContainer API to deploy this app.As can be observed from this test client, the server containing the embeddable webcontainer is not stopped immediately on program exit. So the deployed web-app can be accessed from a browser (http://localhost:8080/simpleweb). Since this app is protected by a user-data constraint, the redirection to https and the secure port (8181) can be observed.


Sunday May 18, 2008

Personal Branding

 Personal Branding is a new-age market mantra, synonymous with marketing yourself in a cut-throat competitive world. Here's a very interesting article on how to create a personal brand for yourself.

Am making the highlights redundant: Steps for a successfully branded you:
 

  1. Know what you want: Identify what you want, and start walking toward it.
  2. Be able to articulate what you do: When someone asks what you do, answer them immediately with a clear, concise, and confident response.
  3. Elevator pitch: Be able to describe who you are and what you do in the time it takes to ride an elevator.
  4. Be positive: Be positive.
  5. Business card: A 3x5 piece of paper or mini-CD that has your personal contact information clearly printed on it.
  6. Have a blog / Website / MySpace, or other online presence: Get your brand online.
  7. Multiple e-mail addresses: Get more than one e-mail address.
  8. Phone: Get a phone.
  9. Signature: Your signature is who you are, your title, and your contact information. You should put this on everything you touch.
  10. Logo: A visual image that positively identifies your brand.
  11. Personal goals: Set goals for yourself that help you reach what you want.
  12. More than one resume: Customize your resume to the potential employer or client.
  13. Mentor: Find a guru and have them teach you.
  14. Networking outlets / contacts: Continually develop your network by attending industry meetings and conferences.
  15. Wardrobe style: When you are going to be near people who you wish to sell your brand to, dress to impress.
  16. Multiple IM accounts: Get more than one IM account.
  17. Alias: Obtain a positive nickname.
  18. Mantra: Collect sayings that enforce your brand.
  19. Speaking and PowerPoint template: Speak about what you do and have a hot-looking PowerPoint template to show.
  20. Passion: Love what you do.

 

 

About

nitkal

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today
Bookmarks