SlideShare ist ein Scribd-Unternehmen logo

Versa cloud slide-deck-03-security-aspects

Roberto C. Mayer
Roberto C. Mayer

Understand how VersaCloud strengthens cloud-based solutions' security

Technologie
1 von 30
Transactions as a Service Security AspectsSecurity Aspects
Clique para editar o estilo do título mestre APIAPI ManagerManager TransactionTransaction ManagerManager SteroidsSteroids + + = Securing Cloud-Based Transactions
Backend Servers
Back-End Password Free Front-Ends Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices Back-end Passwords Additional Security Layer Additional Security Layer Additional Security Layer
Unique IP for all Incoming Requests Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices 208.197.14.65 14.116.108.22 19.105.118.84 14.16.198.22 112.84.215.1 101.18.92.116 44.128.185.18 80.218.125.70 200.248.15.21
2018-03-29T18:04:22.727ZC3DFC09236761B277CF73150 Unique Operation Handle for each Transaction UTC-based ISO-8601 Timestamp 96 random bits (24 hex digits) Unique Transaction Footprint 79.228.162.514.264.337.593.543.950.336 variations per clock tick (7,9E+28)
...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle or Error Code ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud time flow1 2 Transactions Lifetime 2018-10-29T18:04:22.727ZC3DFC09236761B277CF73150 On Timeout: Automatic Rollback On Timeout: Automatic Rollback Single Parameter for every ...Commit Error Codes detailed later on Maximum Time allowed for transaction processing always known at this point
...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud Successful Transactions ...Commit call received before TimeToDie time flow1 2 3 TimeToDie equals start time plus maximum duration
Failed Transactions ...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Error Code Front-End VersaCloud ...Commit calls return error after TimeToDie time flow1 2 3 Rollback started automatically by VersaCloud Let's examine specific Transactions (and ignore error conditions for now) TimeToDie exceeded
UserAddAllow INPUT PARAMETERS  User's E-mail Full Name Birth Date Country Preferential user language Solution Token RETURN VALUE  Operation Handle UserAddCommit INPUT PARAMETERS  UserAddAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 User Registration UserAdd Transaction
UserPassword- SetAllow INPUT PARAMETERS  Email UserToken Password RETURN VALUE  Operation Handle UserPassword- SetCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Password Setup UserTokenGet INPUT PARAMETERS  SolutionToken User's E-mail RETURN VALUE  User Token Only available while password not created 3
UserLoginAllow INPUT PARAMETERS  User's e-mail User's password Login Maximum Duration RETURN VALUE  Operation Handle UserLoginCommit INPUT PARAMETERS  UserLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Time-Limited User Login During UserLogin Transaction's execution All other user requests
Specific Rights are required for certain operations; e.g. Developer  To Define Solutions and Methods User  To Instantiate Methods as Transactions Translator  To Document Solutions and Methods User Rights
SolutionAdd- Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Solution- TokenGet INPUT PARAMETERS  Login Operation Handle Solution's Name Solution Token Type RETURN VALUE  Solution Token (512 bits) Front-End VersaCloud time flow1 2 Solution Creation SolutionAdd- Allow INPUT PARAMETERS  Login Operation Handle Solution's Name RETURN VALUE  Operation Handle Always available for user with the correct rights 3
SolutionToken- CloneAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token New Solution Token Type RETURN VALUE  Operation Handle SolutionToken- CloneCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  New Solution Token Front-End VersaCloud time flow1 2 Cloning Solution Tokens
Need for different types of Solution Tokens • Master Solution Token  sign creation of and changes to Solutions (solution ownership) • Clone Solution Token  sign a Solution's transactions execution (solution access) • Solution Translator Token  sign changes to documentation (solution translation) • Query Translator Token  sign access to a Solution's audit data (solution auditing) 88B9B4D7F8A20BC7F403835EBFD14E1564090EAB337550AF53487D0B6D6AEE3F A39CE22AB1156740728F5A01FC2D61126E101F5BB7A9BE35E40FCBC6A54DFB01 128 hexadecimal digits
Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle MethodAdd- Commit INPUT PARAMETERS  MethodAdd Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Adding a Method to a Solution MethodAddAllow INPUT PARAMETERS  Login Operation Handle SolutionToken MethodName TimeToLive ReturnType, MinLen, MaxLen Cost, Prepaid Since, Until RETURN VALUE  Operation Handle One call per parameter 3
Callback- ParameterAddAllow INPUT PARAMETERS  CallBackAdd Operation Handle Method Parameter ID #1 Method Parameter ID #2 Method Parameter ID #3 ... RETURN VALUE  Operation Handle CallbackAddCommit INPUT PARAMETERS  CallbackAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Adding a Callback to a Method CallbackAddAllow INPUT PARAMETERS  Login Operation Handle Solution Token, Method Name Callback ID, Callback Name Return Type, Protocol Protocol Specific Parameters RETURN VALUE  Operation Handle Single call identifies at once the whole subset of method's parameters to be sent to callback 3
MethodRight- AddAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token Method Name Right RETURN VALUE  Operation Handle Requiring Rights for Methods MethodRight- AddCommit INPUT PARAMETERS  MethodRightAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Set of Rights owned by logged in user Set of Rights required to call the method Once a method requires specific rights, this intersection cannot be empty
SolutionLoginAllow INPUT PARAMETERS  Login Operation Handle Solution Token Login Maximum Duration RETURN VALUE  Operation Handle SolutionLoginCommit INPUT PARAMETERS  SolutionLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Solution Login During user's login into Solution All other user requests
MethodInvoke- Allow INPUT PARAMETERS  Solution Login Operation Handle Method Name RETURN VALUE  Operation Handle MethodInvoke- ParameterAdd INPUT PARAMETERS  Method Invoke Operation Handle Value for Parameter #1 Value for Parameter #2 Value for Parameter #3 ... RETURN VALUE  Operation Handle MethodInvoke- Commit INPUT PARAMETERS  Method Invoke Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Invoking a Method Each method invoked is instantiated as a transaction Associated callbacks aren't even mentioned in front-end's source code 3
Error Codes • Special values returned to signal errors • Defined as the 'errorcode' type • Extensible: for back-end servers to signal specific error conditions Error Code Syntax Problem Area :@Err#Apiddddddd API Call :@Err#Balddddddd User Balance :@Err#Cbkddddddd Callbacks :@Err#Docddddddd Documentation :@Err#Errddddddd Errors :@Err#Grpddddddd User Groups :@Err#Lngddddddd Languages :@Err#Metddddddd Methods :@Err#Prmddddddd Parameters :@Err#Qryddddddd Queries :@Err#Rgtddddddd Rights :@Err#Solddddddd Solutions :@Err#Timddddddd Time :@Err#Typddddddd Type :@Err#Usrddddddd Users :@Err#Vldddddddd Valid Values ErrorDocumentationGet INPUT PARAMETERS  Language Error Code RETURN VALUE  String (3-256) :@Err#Usr0000024 Prefix Problem Area Numeric ID LANGUAGE DOCUMENTATION English (USA) Specified user does not have the needed right to invoke this API Español (moderno) Usuario informado no tiene los derechos necesarios para llamar esta API Português (Brasil) Usuário especificado não possui os direitos necessários para chamar esta API Always initiated in :@Err# • To distinguish from normal return values • Next three positions used to define 'problem area' • Seven digits to number specific errors Documented in various human languages
Call Log Every call to VersaCloud is logged • Including parameters and return value • Auditing based on filtered views of log
VersaCloud's Internal Engine Overview PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Run on as many simultaneous threads as needed
VersaCloud's Internal Engine Step #1 Step #1 - Accept and timestamp Register start time Generate unique operation handle PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute
VersaCloud's Internal Engine Step #2 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #2 - Validate Validate Solution and Method name Verify Method's usage allowed at time of call Verify Method's recalling restrictions Verify Parameters If First Parameter is a Login Handle, verify transaction still alive If anything went wrong, continue at Step #4 If Method has associated cost, verify available balance and charge If anything goes wrong, back-end server will NOT be called
VersaCloud's Internal Engine Step #3 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #3 - Execute Call Method's Implementation Validate Method's return value If Method is a ...Commit, remove transaction from pending queue If Method is an ...Allow call, insert transaction into pending queue
VersaCloud's Internal Engine Step #4 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #4 - Log and Finalize Register processing end time Save execution data to log: start, end, balance, parameters, return value If result is errorcode and Method had cost, reimburse amount charged If result is errorcode, randomly wait a little bit Prepare return value Send return value to caller Algorithmic DDOS protection
Complete Documentation Online https://www.versacloud.technology https://www.mbi.com.br/mbi/english/versacloud/
Join us NOW! Complete documentation, tutorials and case studies available at www.versacloud.technology Get in touch! mailto:mac@matza.group whatsapp: +55 11 98281-2442 mailto:rocmayer@mbi.com.br whatsapp: +55 11 99216 9776 callto:+55 11 3230 6850

Empfohlen

MATRIX Cosec Introduction New
MATRIX Cosec Introduction NewMATRIX Cosec Introduction New
MATRIX Cosec Introduction NewGateway Business Solutions
 
ppt_project_group_2.ppt amnd project report
ppt_project_group_2.ppt amnd project reportppt_project_group_2.ppt amnd project report
ppt_project_group_2.ppt amnd project reportsobanmoriwala1
 
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comProposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comCV. Bandung Surya Makmur
 
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comStandard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comCV. Bandung Surya Makmur
 
Diameter Presentation
Diameter PresentationDiameter Presentation
Diameter PresentationBeny Haddad
 
One-Time Password
One-Time PasswordOne-Time Password
One-Time PasswordAta Ebrahimi
 
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.Louis Göhl
 
WSO2 Complex Event Processor
WSO2 Complex Event ProcessorWSO2 Complex Event Processor
WSO2 Complex Event ProcessorSriskandarajah Suhothayan
 

Empfohlen

MATRIX Cosec Introduction New
MATRIX Cosec Introduction NewMATRIX Cosec Introduction New
MATRIX Cosec Introduction NewGateway Business Solutions
 
ppt_project_group_2.ppt amnd project report
ppt_project_group_2.ppt amnd project reportppt_project_group_2.ppt amnd project report
ppt_project_group_2.ppt amnd project reportsobanmoriwala1
 
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comProposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Proposed Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comCV. Bandung Surya Makmur
 
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comStandard Protocol for Host-Host by Guruh Purnama - Winpulsa.com
Standard Protocol for Host-Host by Guruh Purnama - Winpulsa.comCV. Bandung Surya Makmur
 
Diameter Presentation
Diameter PresentationDiameter Presentation
Diameter PresentationBeny Haddad
 
One-Time Password
One-Time PasswordOne-Time Password
One-Time PasswordAta Ebrahimi
 
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.
SVR402: DirectAccess Technical Drilldown, Part 2 of 2: Putting it all together.Louis Göhl
 
WSO2 Complex Event Processor
WSO2 Complex Event ProcessorWSO2 Complex Event Processor
WSO2 Complex Event ProcessorSriskandarajah Suhothayan
 
Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-apiנאור עמית
 
Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-apiorbitfum
 
In C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdfIn C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdfankitsrivastava681882
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETDavid McCarter
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETDavid McCarter
 
VoIP Softswitch
VoIP SoftswitchVoIP Softswitch
VoIP SoftswitchREVE Systems
 
Cellphone based home automation
Cellphone based home automationCellphone based home automation
Cellphone based home automationPROJECTRONICS
 
Smart Printing Technical Presentation
Smart Printing Technical PresentationSmart Printing Technical Presentation
Smart Printing Technical PresentationJohnTileyITQ
 
Module 4 Enumeration
Module 4 EnumerationModule 4 Enumeration
Module 4 Enumerationleminhvuong
 
Application Security
Application SecurityApplication Security
Application Securityflorinc
 
Building Security Acсess to Remote Devices
Building Security Acсess to Remote DevicesBuilding Security Acсess to Remote Devices
Building Security Acсess to Remote DevicesGlobalLogic Ukraine
 
Dalton Jim
Dalton JimDalton Jim
Dalton JimCarl Ford
 
Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs Matrix Comsec
 
Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3 Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3 Brian Driscoll
 
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...InfluxData
 
RAMP_FINAL_ppt
RAMP_FINAL_pptRAMP_FINAL_ppt
RAMP_FINAL_pptMadhusmita Roy
 
Bh Win 03 Rileybollefer
Bh Win 03 RileybolleferBh Win 03 Rileybollefer
Bh Win 03 RileybolleferTimothy Bollefer
 
Introduction to Diameter Protocol - Part1
Introduction to Diameter Protocol - Part1Introduction to Diameter Protocol - Part1
Introduction to Diameter Protocol - Part1Basim Aly (JNCIP-SP, JNCIP-ENT)
 
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, EverAltitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, EverFastly
 
Introduction to DIAMETER
Introduction to DIAMETERIntroduction to DIAMETER
Introduction to DIAMETERHossein Yavari
 
Versa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introductionVersa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introductionRoberto C. Mayer
 
Versa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitchVersa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitchRoberto C. Mayer
 

Weitere ähnliche Inhalte

Ähnlich wie Versa cloud slide-deck-03-security-aspects

Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-apiנאור עמית
 
Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-apiorbitfum
 
In C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdfIn C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdfankitsrivastava681882
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETDavid McCarter
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETDavid McCarter
 
Cellphone based home automation
Cellphone based home automationCellphone based home automation
Cellphone based home automationPROJECTRONICS
 
Smart Printing Technical Presentation
Smart Printing Technical PresentationSmart Printing Technical Presentation
Smart Printing Technical PresentationJohnTileyITQ
 
Module 4 Enumeration
Module 4 EnumerationModule 4 Enumeration
Module 4 Enumerationleminhvuong
 
Application Security
Application SecurityApplication Security
Application Securityflorinc
 
Building Security Acсess to Remote Devices
Building Security Acсess to Remote DevicesBuilding Security Acсess to Remote Devices
Building Security Acсess to Remote DevicesGlobalLogic Ukraine
 
Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs Matrix Comsec
 
Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3 Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3 Brian Driscoll
 
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...InfluxData
 
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, EverAltitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, EverFastly
 
Introduction to DIAMETER
Introduction to DIAMETERIntroduction to DIAMETER
Introduction to DIAMETERHossein Yavari
 

Ähnlich wie Versa cloud slide-deck-03-security-aspects (20)

Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-api
 
Paymentwall subscriptions-api
Paymentwall subscriptions-apiPaymentwall subscriptions-api
Paymentwall subscriptions-api
 
In C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdfIn C programming please CSCI 4534 Operating Systems Program.pdf
In C programming please CSCI 4534 Operating Systems Program.pdf
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NET
 
Back-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NETBack-2-Basics: Exception & Event Instrumentation in .NET
Back-2-Basics: Exception & Event Instrumentation in .NET
 
VoIP Softswitch
VoIP SoftswitchVoIP Softswitch
VoIP Softswitch
 
Cellphone based home automation
Cellphone based home automationCellphone based home automation
Cellphone based home automation
 
Smart Printing Technical Presentation
Smart Printing Technical PresentationSmart Printing Technical Presentation
Smart Printing Technical Presentation
 
Module 4 Enumeration
Module 4 EnumerationModule 4 Enumeration
Module 4 Enumeration
 
Application Security
Application SecurityApplication Security
Application Security
 
Building Security Acсess to Remote Devices
Building Security Acсess to Remote DevicesBuilding Security Acсess to Remote Devices
Building Security Acсess to Remote Devices
 
Dalton Jim
Dalton JimDalton Jim
Dalton Jim
 
Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs Matrix Telecom Solutions: SETU ATAs
Matrix Telecom Solutions: SETU ATAs
 
Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3 Intro To The FIX Protocol presented at BarCampNYC3
Intro To The FIX Protocol presented at BarCampNYC3
 
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
How to Introduce Telemetry Streaming (gNMI) in Your Network with SNMP with Te...
 
RAMP_FINAL_ppt
RAMP_FINAL_pptRAMP_FINAL_ppt
RAMP_FINAL_ppt
 
Bh Win 03 Rileybollefer
Bh Win 03 RileybolleferBh Win 03 Rileybollefer
Bh Win 03 Rileybollefer
 
Introduction to Diameter Protocol - Part1
Introduction to Diameter Protocol - Part1Introduction to Diameter Protocol - Part1
Introduction to Diameter Protocol - Part1
 
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, EverAltitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
Altitude NY 2018: Leveraging Log Streaming to Build the Best Dashboards, Ever
 
Introduction to DIAMETER
Introduction to DIAMETERIntroduction to DIAMETER
Introduction to DIAMETER
 

Mehr von Roberto C. Mayer

Versa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introductionVersa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introductionRoberto C. Mayer
 
Versa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitchVersa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitchRoberto C. Mayer
 
2017 11-26-sete-chaves-da-oracao-da-serenidade
2017 11-26-sete-chaves-da-oracao-da-serenidade2017 11-26-sete-chaves-da-oracao-da-serenidade
2017 11-26-sete-chaves-da-oracao-da-serenidadeRoberto C. Mayer
 
WCIT 2016 Sérgio Paulo Gallindo
WCIT 2016 Sérgio Paulo GallindoWCIT 2016 Sérgio Paulo Gallindo
WCIT 2016 Sérgio Paulo GallindoRoberto C. Mayer
 
WCIT 2016 Manu Bhardwaj 2
WCIT 2016 Manu Bhardwaj 2 WCIT 2016 Manu Bhardwaj 2
WCIT 2016 Manu Bhardwaj 2 Roberto C. Mayer
 
WCIT 2016 Julio Cesar Ribeiro
WCIT 2016 Julio Cesar RibeiroWCIT 2016 Julio Cesar Ribeiro
WCIT 2016 Julio Cesar RibeiroRoberto C. Mayer
 
WCIT 2016 Dr. William P. Magee Jr
WCIT 2016 Dr. William P. Magee JrWCIT 2016 Dr. William P. Magee Jr
WCIT 2016 Dr. William P. Magee JrRoberto C. Mayer
 
2016 it-census-2015-edition-main-results
2016 it-census-2015-edition-main-results2016 it-census-2015-edition-main-results
2016 it-census-2015-edition-main-resultsRoberto C. Mayer
 
2016-08-31 Comorbidades e a Dependência Química
2016-08-31 Comorbidades e a Dependência Química2016-08-31 Comorbidades e a Dependência Química
2016-08-31 Comorbidades e a Dependência QuímicaRoberto C. Mayer
 
Cloud iot novos requisitos software
Cloud iot novos requisitos softwareCloud iot novos requisitos software
Cloud iot novos requisitos softwareRoberto C. Mayer
 

Mehr von Roberto C. Mayer (20)

Versa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introductionVersa cloud slide-deck-02-technical-introduction
Versa cloud slide-deck-02-technical-introduction
 
Versa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitchVersa cloud slide-deck-01-pitch
Versa cloud slide-deck-01-pitch
 
2017 11-26-sete-chaves-da-oracao-da-serenidade
2017 11-26-sete-chaves-da-oracao-da-serenidade2017 11-26-sete-chaves-da-oracao-da-serenidade
2017 11-26-sete-chaves-da-oracao-da-serenidade
 
WCIT 2016 Calls to Action
WCIT 2016 Calls to ActionWCIT 2016 Calls to Action
WCIT 2016 Calls to Action
 
2016 WCIT Vint Cerf
2016 WCIT Vint Cerf2016 WCIT Vint Cerf
2016 WCIT Vint Cerf
 
WCIT 2016 Soumitra Dutta
WCIT 2016 Soumitra DuttaWCIT 2016 Soumitra Dutta
WCIT 2016 Soumitra Dutta
 
WCIT 2016 Sérgio Paulo Gallindo
WCIT 2016 Sérgio Paulo GallindoWCIT 2016 Sérgio Paulo Gallindo
WCIT 2016 Sérgio Paulo Gallindo
 
WCIT 2016 Manu Bhardwaj
WCIT 2016 Manu BhardwajWCIT 2016 Manu Bhardwaj
WCIT 2016 Manu Bhardwaj
 
WCIT 2016 Manu Bhardwaj 2
WCIT 2016 Manu Bhardwaj 2 WCIT 2016 Manu Bhardwaj 2
WCIT 2016 Manu Bhardwaj 2
 
WCIT 2016 Julio Cesar Ribeiro
WCIT 2016 Julio Cesar RibeiroWCIT 2016 Julio Cesar Ribeiro
WCIT 2016 Julio Cesar Ribeiro
 
WCIT 2016 Jan Ming Ho
WCIT 2016 Jan Ming HoWCIT 2016 Jan Ming Ho
WCIT 2016 Jan Ming Ho
 
WCIT 2016 George Newstrom
WCIT 2016 George NewstromWCIT 2016 George Newstrom
WCIT 2016 George Newstrom
 
WCIT 2016 Dr. William P. Magee Jr
WCIT 2016 Dr. William P. Magee JrWCIT 2016 Dr. William P. Magee Jr
WCIT 2016 Dr. William P. Magee Jr
 
WCIT 2016 Dr. Ming Ji Wu
WCIT 2016 Dr. Ming Ji WuWCIT 2016 Dr. Ming Ji Wu
WCIT 2016 Dr. Ming Ji Wu
 
WCIT Anupan Chander 1
WCIT Anupan Chander 1WCIT Anupan Chander 1
WCIT Anupan Chander 1
 
WCIT 2016 Amy Aussieker
WCIT 2016 Amy AussiekerWCIT 2016 Amy Aussieker
WCIT 2016 Amy Aussieker
 
WCIT 2016 Aline Sordilli
WCIT 2016 Aline SordilliWCIT 2016 Aline Sordilli
WCIT 2016 Aline Sordilli
 
2016 it-census-2015-edition-main-results
2016 it-census-2015-edition-main-results2016 it-census-2015-edition-main-results
2016 it-census-2015-edition-main-results
 
2016-08-31 Comorbidades e a Dependência Química
2016-08-31 Comorbidades e a Dependência Química2016-08-31 Comorbidades e a Dependência Química
2016-08-31 Comorbidades e a Dependência Química
 
Cloud iot novos requisitos software
Cloud iot novos requisitos softwareCloud iot novos requisitos software
Cloud iot novos requisitos software
 

Kürzlich hochgeladen

Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxRemote DBA Services
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024The Digital Insurer
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyKhushali Kathiriya
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businesspanagenda
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityWSO2
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsNanddeep Nachan
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfOrbitshub
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAndrey Devyatkin
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...apidays
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontologyjohnbeverley2021
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2
 

Kürzlich hochgeladen (20)

Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontology
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 

Versa cloud slide-deck-03-security-aspects

  • 1. Transactions as a Service Security AspectsSecurity Aspects
  • 2. Clique para editar o estilo do título mestre APIAPI ManagerManager TransactionTransaction ManagerManager SteroidsSteroids + + = Securing Cloud-Based Transactions
  • 4. Back-End Password Free Front-Ends Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices Back-end Passwords Additional Security Layer Additional Security Layer Additional Security Layer
  • 5. Unique IP for all Incoming Requests Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices 208.197.14.65 14.116.108.22 19.105.118.84 14.16.198.22 112.84.215.1 101.18.92.116 44.128.185.18 80.218.125.70 200.248.15.21
  • 6. 2018-03-29T18:04:22.727ZC3DFC09236761B277CF73150 Unique Operation Handle for each Transaction UTC-based ISO-8601 Timestamp 96 random bits (24 hex digits) Unique Transaction Footprint 79.228.162.514.264.337.593.543.950.336 variations per clock tick (7,9E+28)
  • 7. ...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle or Error Code ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud time flow1 2 Transactions Lifetime 2018-10-29T18:04:22.727ZC3DFC09236761B277CF73150 On Timeout: Automatic Rollback On Timeout: Automatic Rollback Single Parameter for every ...Commit Error Codes detailed later on Maximum Time allowed for transaction processing always known at this point
  • 8. ...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud Successful Transactions ...Commit call received before TimeToDie time flow1 2 3 TimeToDie equals start time plus maximum duration
  • 9. Failed Transactions ...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Error Code Front-End VersaCloud ...Commit calls return error after TimeToDie time flow1 2 3 Rollback started automatically by VersaCloud Let's examine specific Transactions (and ignore error conditions for now) TimeToDie exceeded
  • 10. UserAddAllow INPUT PARAMETERS  User's E-mail Full Name Birth Date Country Preferential user language Solution Token RETURN VALUE  Operation Handle UserAddCommit INPUT PARAMETERS  UserAddAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 User Registration UserAdd Transaction
  • 11. UserPassword- SetAllow INPUT PARAMETERS  Email UserToken Password RETURN VALUE  Operation Handle UserPassword- SetCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Password Setup UserTokenGet INPUT PARAMETERS  SolutionToken User's E-mail RETURN VALUE  User Token Only available while password not created 3
  • 12. UserLoginAllow INPUT PARAMETERS  User's e-mail User's password Login Maximum Duration RETURN VALUE  Operation Handle UserLoginCommit INPUT PARAMETERS  UserLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Time-Limited User Login During UserLogin Transaction's execution All other user requests
  • 13. Specific Rights are required for certain operations; e.g. Developer  To Define Solutions and Methods User  To Instantiate Methods as Transactions Translator  To Document Solutions and Methods User Rights
  • 14. SolutionAdd- Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Solution- TokenGet INPUT PARAMETERS  Login Operation Handle Solution's Name Solution Token Type RETURN VALUE  Solution Token (512 bits) Front-End VersaCloud time flow1 2 Solution Creation SolutionAdd- Allow INPUT PARAMETERS  Login Operation Handle Solution's Name RETURN VALUE  Operation Handle Always available for user with the correct rights 3
  • 15. SolutionToken- CloneAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token New Solution Token Type RETURN VALUE  Operation Handle SolutionToken- CloneCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  New Solution Token Front-End VersaCloud time flow1 2 Cloning Solution Tokens
  • 16. Need for different types of Solution Tokens • Master Solution Token  sign creation of and changes to Solutions (solution ownership) • Clone Solution Token  sign a Solution's transactions execution (solution access) • Solution Translator Token  sign changes to documentation (solution translation) • Query Translator Token  sign access to a Solution's audit data (solution auditing) 88B9B4D7F8A20BC7F403835EBFD14E1564090EAB337550AF53487D0B6D6AEE3F A39CE22AB1156740728F5A01FC2D61126E101F5BB7A9BE35E40FCBC6A54DFB01 128 hexadecimal digits
  • 17. Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle MethodAdd- Commit INPUT PARAMETERS  MethodAdd Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Adding a Method to a Solution MethodAddAllow INPUT PARAMETERS  Login Operation Handle SolutionToken MethodName TimeToLive ReturnType, MinLen, MaxLen Cost, Prepaid Since, Until RETURN VALUE  Operation Handle One call per parameter 3
  • 18. Callback- ParameterAddAllow INPUT PARAMETERS  CallBackAdd Operation Handle Method Parameter ID #1 Method Parameter ID #2 Method Parameter ID #3 ... RETURN VALUE  Operation Handle CallbackAddCommit INPUT PARAMETERS  CallbackAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Adding a Callback to a Method CallbackAddAllow INPUT PARAMETERS  Login Operation Handle Solution Token, Method Name Callback ID, Callback Name Return Type, Protocol Protocol Specific Parameters RETURN VALUE  Operation Handle Single call identifies at once the whole subset of method's parameters to be sent to callback 3
  • 19. MethodRight- AddAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token Method Name Right RETURN VALUE  Operation Handle Requiring Rights for Methods MethodRight- AddCommit INPUT PARAMETERS  MethodRightAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Set of Rights owned by logged in user Set of Rights required to call the method Once a method requires specific rights, this intersection cannot be empty
  • 20. SolutionLoginAllow INPUT PARAMETERS  Login Operation Handle Solution Token Login Maximum Duration RETURN VALUE  Operation Handle SolutionLoginCommit INPUT PARAMETERS  SolutionLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Solution Login During user's login into Solution All other user requests
  • 21. MethodInvoke- Allow INPUT PARAMETERS  Solution Login Operation Handle Method Name RETURN VALUE  Operation Handle MethodInvoke- ParameterAdd INPUT PARAMETERS  Method Invoke Operation Handle Value for Parameter #1 Value for Parameter #2 Value for Parameter #3 ... RETURN VALUE  Operation Handle MethodInvoke- Commit INPUT PARAMETERS  Method Invoke Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Invoking a Method Each method invoked is instantiated as a transaction Associated callbacks aren't even mentioned in front-end's source code 3
  • 22. Error Codes • Special values returned to signal errors • Defined as the 'errorcode' type • Extensible: for back-end servers to signal specific error conditions Error Code Syntax Problem Area :@Err#Apiddddddd API Call :@Err#Balddddddd User Balance :@Err#Cbkddddddd Callbacks :@Err#Docddddddd Documentation :@Err#Errddddddd Errors :@Err#Grpddddddd User Groups :@Err#Lngddddddd Languages :@Err#Metddddddd Methods :@Err#Prmddddddd Parameters :@Err#Qryddddddd Queries :@Err#Rgtddddddd Rights :@Err#Solddddddd Solutions :@Err#Timddddddd Time :@Err#Typddddddd Type :@Err#Usrddddddd Users :@Err#Vldddddddd Valid Values ErrorDocumentationGet INPUT PARAMETERS  Language Error Code RETURN VALUE  String (3-256) :@Err#Usr0000024 Prefix Problem Area Numeric ID LANGUAGE DOCUMENTATION English (USA) Specified user does not have the needed right to invoke this API Español (moderno) Usuario informado no tiene los derechos necesarios para llamar esta API Português (Brasil) Usuário especificado não possui os direitos necessários para chamar esta API Always initiated in :@Err# • To distinguish from normal return values • Next three positions used to define 'problem area' • Seven digits to number specific errors Documented in various human languages
  • 23. Call Log Every call to VersaCloud is logged • Including parameters and return value • Auditing based on filtered views of log
  • 24. VersaCloud's Internal Engine Overview PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Run on as many simultaneous threads as needed
  • 25. VersaCloud's Internal Engine Step #1 Step #1 - Accept and timestamp Register start time Generate unique operation handle PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute
  • 26. VersaCloud's Internal Engine Step #2 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #2 - Validate Validate Solution and Method name Verify Method's usage allowed at time of call Verify Method's recalling restrictions Verify Parameters If First Parameter is a Login Handle, verify transaction still alive If anything went wrong, continue at Step #4 If Method has associated cost, verify available balance and charge If anything goes wrong, back-end server will NOT be called
  • 27. VersaCloud's Internal Engine Step #3 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #3 - Execute Call Method's Implementation Validate Method's return value If Method is a ...Commit, remove transaction from pending queue If Method is an ...Allow call, insert transaction into pending queue
  • 28. VersaCloud's Internal Engine Step #4 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #4 - Log and Finalize Register processing end time Save execution data to log: start, end, balance, parameters, return value If result is errorcode and Method had cost, reimburse amount charged If result is errorcode, randomly wait a little bit Prepare return value Send return value to caller Algorithmic DDOS protection
  • 30. Join us NOW! Complete documentation, tutorials and case studies available at www.versacloud.technology Get in touch! mailto:mac@matza.group whatsapp: +55 11 98281-2442 mailto:rocmayer@mbi.com.br whatsapp: +55 11 99216 9776 callto:+55 11 3230 6850