SlideShare ist ein Scribd-Unternehmen logo

Password Maintanance

Als PPT, PDF herunterladen
Subhajit Ghosh - Lead Enterprise Integration Architect
Subhajit Ghosh - Lead Enterprise Integration Architect

My recent presentation for a big auto major in their CoP seminar that how effectively we can maintain user id & password in an application

1 von 11
Userid & Password Management By Dynaprop Presented by: Subhajit Ghosh November 17, 2009
Key takeways and Uncovered area ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
What is Dynaprop Dynaprop (The Dynamic Property Manager Admin Console )allows an application team to securely and dynamically administer application properties that are stored in an Oracle, DB2 or SQL Server database through a web interface.
Dual userid approach ,[object Object],[object Object],Myappid1 / mypwd1a Myappid2 / mypwd2a Myappid1 / mypwd1b Time Myappid1/mypwd1a Myappid2/mypwd2a Myappid1/mypwd1b Source system uid/pwd App Config uid/pwd Validity Overlap period Validity Overlap period
Couple of other important points ,[object Object],[object Object],[object Object]
Using CredentialsContext – Step 1a
Using CredentialsContext – Step 1b
Using CredentialsContext – Step 1d
Using CredentialsContext – Step 1f
Additional information ,[object Object],[object Object],Constraint in Dynaprop https://www.tc2.ford.com/ts/JCOE/Lists/Whats%20New/DispForm.aspx?ID=150&Source=https%3A%2F%2Fwww%2Etc2%2Eford%2Ecom%2Fts%2FJCOE%2Fdefault%2Easpx
Questions & Answers

Empfohlen

Sam Kroonenburg and Pete Sbarski - The Story of a Serverless Startup
Sam Kroonenburg and Pete Sbarski - The Story of a Serverless StartupSam Kroonenburg and Pete Sbarski - The Story of a Serverless Startup
Sam Kroonenburg and Pete Sbarski - The Story of a Serverless StartupServerlessConf
 
Using Scylla for Order Capture at Fanatics
Using Scylla for Order Capture at FanaticsUsing Scylla for Order Capture at Fanatics
Using Scylla for Order Capture at FanaticsScyllaDB
 
Building adaptive user experiences using Contextual Multi-Armed Bandits with...
Building adaptive user experiences using Contextual Multi-Armed Bandits with...Building adaptive user experiences using Contextual Multi-Armed Bandits with...
Building adaptive user experiences using Contextual Multi-Armed Bandits with...HostedbyConfluent
 
Cv
CvCv
CvMathieu Paczesny
 
你所不知道的健康檢查
你所不知道的健康檢查你所不知道的健康檢查
你所不知道的健康檢查honan4108
 
Mariastella Gelmini, PdL: bene Alfano su Riccardi
Mariastella Gelmini, PdL: bene Alfano su RiccardiMariastella Gelmini, PdL: bene Alfano su Riccardi
Mariastella Gelmini, PdL: bene Alfano su RiccardiPhiNet Social Media Communication
 
Film script
Film scriptFilm script
Film scriptjessicarose99
 
Simpson uni. admin service
Simpson uni. admin serviceSimpson uni. admin service
Simpson uni. admin serviceRoss
 

Empfohlen

Sam Kroonenburg and Pete Sbarski - The Story of a Serverless Startup
Sam Kroonenburg and Pete Sbarski - The Story of a Serverless StartupSam Kroonenburg and Pete Sbarski - The Story of a Serverless Startup
Sam Kroonenburg and Pete Sbarski - The Story of a Serverless StartupServerlessConf
 
Using Scylla for Order Capture at Fanatics
Using Scylla for Order Capture at FanaticsUsing Scylla for Order Capture at Fanatics
Using Scylla for Order Capture at FanaticsScyllaDB
 
Building adaptive user experiences using Contextual Multi-Armed Bandits with...
Building adaptive user experiences using Contextual Multi-Armed Bandits with...Building adaptive user experiences using Contextual Multi-Armed Bandits with...
Building adaptive user experiences using Contextual Multi-Armed Bandits with...HostedbyConfluent
 
Cv
CvCv
CvMathieu Paczesny
 
你所不知道的健康檢查
你所不知道的健康檢查你所不知道的健康檢查
你所不知道的健康檢查honan4108
 
Mariastella Gelmini, PdL: bene Alfano su Riccardi
Mariastella Gelmini, PdL: bene Alfano su RiccardiMariastella Gelmini, PdL: bene Alfano su Riccardi
Mariastella Gelmini, PdL: bene Alfano su RiccardiPhiNet Social Media Communication
 
Film script
Film scriptFilm script
Film scriptjessicarose99
 
Simpson uni. admin service
Simpson uni. admin serviceSimpson uni. admin service
Simpson uni. admin serviceRoss
 
El lucro en chile
El lucro en chileEl lucro en chile
El lucro en chileFrancisca Sanchez Valencia
 
Fekrah Letter Oct 2016
Fekrah Letter Oct 2016Fekrah Letter Oct 2016
Fekrah Letter Oct 2016Ashraf Shah
 
Periodo entreguerras
Periodo entreguerrasPeriodo entreguerras
Periodo entreguerrasFrancisca Sanchez Valencia
 
Tema1 a
Tema1 aTema1 a
Tema1 aJacinto González Pachón
 
Resume Jonathan Nash Expertise
Resume Jonathan Nash ExpertiseResume Jonathan Nash Expertise
Resume Jonathan Nash ExpertiseJonathan Nash
 
One Earth Movement Workshop Flyer
One Earth Movement Workshop FlyerOne Earth Movement Workshop Flyer
One Earth Movement Workshop Flyerzenarahxavier
 
1 tragédia
1 tragédia1 tragédia
1 tragédiaAna Maria Accorsi
 
BEP Marine Catalog
BEP Marine CatalogBEP Marine Catalog
BEP Marine CatalogRimsky Cheng
 
Keith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product RoundtableKeith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product Roundtablehopperomatic
 
勞退新制說明 超完整版
勞退新制說明 超完整版勞退新制說明 超完整版
勞退新制說明 超完整版honan4108
 
Fuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMPFuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMPKenneth Peeples
 
AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16AppDynamics
 
De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie Proact Netherlands B.V.
 
Observability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaSObservability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaSScyllaDB
 
SnappyFlow Presentation.pdf
SnappyFlow Presentation.pdfSnappyFlow Presentation.pdf
SnappyFlow Presentation.pdfSnappyFlowObservabil
 
Android's security architecture
Android's security architectureAndroid's security architecture
Android's security architectureOfer Rivlin, CISSP
 
Cloud Management
Cloud ManagementCloud Management
Cloud ManagementAndreas Chatzakis
 
Open source Cloud Automation Platform
Open source Cloud Automation PlatformOpen source Cloud Automation Platform
Open source Cloud Automation PlatformKishore Neelamegam
 
Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016AdobeMarketingCloud
 
Web(abap introduction)
Web(abap introduction)Web(abap introduction)
Web(abap introduction)Kranthi Kumar
 
Hybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized DeduplicationHybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized DeduplicationPrem Rao
 
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and PermissionsCassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and PermissionsAnant Corporation
 

Weitere ähnliche Inhalte

Andere mochten auch

Fekrah Letter Oct 2016
Fekrah Letter Oct 2016Fekrah Letter Oct 2016
Fekrah Letter Oct 2016Ashraf Shah
 
Resume Jonathan Nash Expertise
Resume Jonathan Nash ExpertiseResume Jonathan Nash Expertise
Resume Jonathan Nash ExpertiseJonathan Nash
 
One Earth Movement Workshop Flyer
One Earth Movement Workshop FlyerOne Earth Movement Workshop Flyer
One Earth Movement Workshop Flyerzenarahxavier
 
BEP Marine Catalog
BEP Marine CatalogBEP Marine Catalog
BEP Marine CatalogRimsky Cheng
 
Keith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product RoundtableKeith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product Roundtablehopperomatic
 
勞退新制說明 超完整版
勞退新制說明 超完整版勞退新制說明 超完整版
勞退新制說明 超完整版honan4108
 

Andere mochten auch (10)

El lucro en chile
El lucro en chileEl lucro en chile
El lucro en chile
 
Fekrah Letter Oct 2016
Fekrah Letter Oct 2016Fekrah Letter Oct 2016
Fekrah Letter Oct 2016
 
Periodo entreguerras
Periodo entreguerrasPeriodo entreguerras
Periodo entreguerras
 
Tema1 a
Tema1 aTema1 a
Tema1 a
 
Resume Jonathan Nash Expertise
Resume Jonathan Nash ExpertiseResume Jonathan Nash Expertise
Resume Jonathan Nash Expertise
 
One Earth Movement Workshop Flyer
One Earth Movement Workshop FlyerOne Earth Movement Workshop Flyer
One Earth Movement Workshop Flyer
 
1 tragédia
1 tragédia1 tragédia
1 tragédia
 
BEP Marine Catalog
BEP Marine CatalogBEP Marine Catalog
BEP Marine Catalog
 
Keith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product RoundtableKeith hopper - General Assembly Product Roundtable
Keith hopper - General Assembly Product Roundtable
 
勞退新制說明 超完整版
勞退新制說明 超完整版勞退新制說明 超完整版
勞退新制說明 超完整版
 

Ähnlich wie Password Maintanance

Fuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMPFuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMPKenneth Peeples
 
AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16AppDynamics
 
De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie Proact Netherlands B.V.
 
Observability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaSObservability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaSScyllaDB
 
Android's security architecture
Android's security architectureAndroid's security architecture
Android's security architectureOfer Rivlin, CISSP
 
Open source Cloud Automation Platform
Open source Cloud Automation PlatformOpen source Cloud Automation Platform
Open source Cloud Automation PlatformKishore Neelamegam
 
Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016AdobeMarketingCloud
 
Web(abap introduction)
Web(abap introduction)Web(abap introduction)
Web(abap introduction)Kranthi Kumar
 
Hybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized DeduplicationHybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized DeduplicationPrem Rao
 
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and PermissionsCassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and PermissionsAnant Corporation
 
ColdFusion 11 Overview - CFSummit 2013
ColdFusion 11 Overview - CFSummit 2013ColdFusion 11 Overview - CFSummit 2013
ColdFusion 11 Overview - CFSummit 2013Rupesh Kumar
 
Drupal performance and scalability
Drupal performance and scalabilityDrupal performance and scalability
Drupal performance and scalabilityTwinbit
 
1 architecture & design
1 architecture & design1 architecture & design
1 architecture & designMark Swarbrick
 
Follow before a drupal security release by shamit khemka
Follow before a drupal security release by shamit khemkaFollow before a drupal security release by shamit khemka
Follow before a drupal security release by shamit khemkaSynapseIndia
 
OpenStack Tokyo Talk Application Data Protection Service
OpenStack Tokyo Talk Application Data Protection ServiceOpenStack Tokyo Talk Application Data Protection Service
OpenStack Tokyo Talk Application Data Protection ServiceEran Gampel
 
Newvem Community - Cloud Management
Newvem Community - Cloud ManagementNewvem Community - Cloud Management
Newvem Community - Cloud ManagementAndreas Chatzakis
 

Ähnlich wie Password Maintanance (20)

Fuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMPFuse Service Works Design Time Governance and S-RAMP
Fuse Service Works Design Time Governance and S-RAMP
 
AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16AppDynamics Administration - AppSphere16
AppDynamics Administration - AppSphere16
 
De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie De voordelen van hypervisor en back-up integratie
De voordelen van hypervisor en back-up integratie
 
Observability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaSObservability Best Practices for Your Cloud DBaaS
Observability Best Practices for Your Cloud DBaaS
 
SnappyFlow Presentation.pdf
SnappyFlow Presentation.pdfSnappyFlow Presentation.pdf
SnappyFlow Presentation.pdf
 
Android's security architecture
Android's security architectureAndroid's security architecture
Android's security architecture
 
Cloud Management
Cloud ManagementCloud Management
Cloud Management
 
Open source Cloud Automation Platform
Open source Cloud Automation PlatformOpen source Cloud Automation Platform
Open source Cloud Automation Platform
 
Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016Adobe Ask the AEM Community Expert Session Oct 2016
Adobe Ask the AEM Community Expert Session Oct 2016
 
Web(abap introduction)
Web(abap introduction)Web(abap introduction)
Web(abap introduction)
 
Hybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized DeduplicationHybrid Cloud Approach for Secure Authorized Deduplication
Hybrid Cloud Approach for Secure Authorized Deduplication
 
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and PermissionsCassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
Cassandra Lunch #92: Securing Apache Cassandra - Managing Roles and Permissions
 
ColdFusion 11 Overview - CFSummit 2013
ColdFusion 11 Overview - CFSummit 2013ColdFusion 11 Overview - CFSummit 2013
ColdFusion 11 Overview - CFSummit 2013
 
Drupal performance and scalability
Drupal performance and scalabilityDrupal performance and scalability
Drupal performance and scalability
 
1 architecture & design
1 architecture & design1 architecture & design
1 architecture & design
 
Follow before a drupal security release by shamit khemka
Follow before a drupal security release by shamit khemkaFollow before a drupal security release by shamit khemka
Follow before a drupal security release by shamit khemka
 
SnapDiff
SnapDiffSnapDiff
SnapDiff
 
OpenStack Tokyo Talk Application Data Protection Service
OpenStack Tokyo Talk Application Data Protection ServiceOpenStack Tokyo Talk Application Data Protection Service
OpenStack Tokyo Talk Application Data Protection Service
 
Newvem Community - Cloud Management
Newvem Community - Cloud ManagementNewvem Community - Cloud Management
Newvem Community - Cloud Management
 
Where is cold fusion headed
Where is cold fusion headedWhere is cold fusion headed
Where is cold fusion headed
 

Password Maintanance

Hinweis der Redaktion

  1. Symmetric Crypt w/ RC4 – wasn’t written or intended to be a reusable FW Property Manager – one of JCOE first FW’s. Written at the same time as eSpoke to support eSpoke configuration Integrated Symmetric Crypt & Property Manager – for password decryption. Uses a system property for key configuration Dynamic Property Manager developed to allow for property changes w/o having to re-deploy application and provide higher security. This includes the DynaProp Admin console and ‘Highly dynamic’ properties. HD properties will be retrieved from the DB with each access if necessary FJF Asymmetric encryption/decryption included in DynaProp using FJFConfig keys. FJFConfig has a different key for each environment. Note there are no tools outside of DynaProp Admin console to encrypt with FJF Asymmetric Crypt Controls Compliance guide describes all the controls necessary for all the different encryption/decryption components and processes com.ford.it.context.RequestContext developed to support the Thread Local pattern Property Credentials utility – Allows you to define ‘Highly Dynamic’ namespaces that contain a id & password w/o taking the hit of a DB trip with every access. Symmetric Crypt was changed to only generate AES and Triple DES keys. RC4 keys are for backward compatibility only.