670 likes | 923 Views
Enterprise Component Comparison: An Examination Of J2EE, CORBA, And .NET. presented by Seth Freeman, Phil Griffith and Frank Manni Semester Project- Final Presentation CSE333 – Distributed Component Systems (FALL 2005) Instructor Prof. Steven A. Demurjian
E N D
Enterprise Component Comparison:An Examination Of J2EE, CORBA, And .NET presented by Seth Freeman, Phil Griffith and Frank Manni Semester Project- Final Presentation CSE333 – Distributed Component Systems (FALL 2005) Instructor Prof. Steven A. Demurjian Department of Computer Science and Engineering University of Connecticut srf04001@engr.uconn.edu phil.griffith@gmail.com uconnfrank@yahoo.com
Outline Of Presentation • Introduction • Project Description • CORBA Material • J2EE Material • .NET Material • Analysis • Conclusion
Project Description • Compare and Contrast the 3 Technologies J2EE, .NET, and CORBA. • Evaluate the Three in These Four Areas: • Database Connectivity • Security • Web Services • Interoperability • GOAL: To Analyze Which Areas in J2EE or .NET is Better Suited to Be Used for Application Development. Also to Determine in Which Areas CORBA Can Be Beneficial.
Project Scope • Database Connectivity • Determine Components Involved. • Examine the Underlying Functionality of Establishing a Connection to a Database. • In the End We Will Also Compare the Performance of J2EE and .NET in Updating and Querying a Real World Database. • Web Services • Analyze the Techniques to Develop and Deploy Web Services for the Three Technologies. • Observe the Ease of Use • Determine the Support of Each for Web Services.
Project Scope • Security • The Goal Here is to Determine the Built-in Capabilities of Authorization, Authentication, and Encryption. • Then Analyze the Functionality of These Primitives Within the Framework. • Interoperability • The Final Part of the Project is to Investigate the Middleware Interoperability of .NET/J2EE and CORBA Components. • More Specifically the Focus Will Be on Remoting in .NET vs. RMI (J2EE). • And Also Observe How Components Interact With Heterogeneous Components.
CORBA (In Brief) Common Object Request Broker Architecture
CORBA DB • CORBA and Databases
CORBA WS Similar Functionality CORBA
CORBA WS Web Services
CORBA Security • Security Within CORBA • CORBA Gives Administrators, Developers, Etc the Ability to Add Security to the System. • Developed a Specification of What Makes a CORBA Application Secure. • CORBA, Being Distributed, Has More Areas That Are Vulnerable to Attacks, and Therefore Has More Areas That Need to Be Made Secure • Not Going to Go Over All of Them--Already Went Over Them in Class. • Focus on Security Service Protocol (SECP)—Communication Between Objects/Clients and the ORB
CORBA Security • CORBA ORBs Communicate by Using the GIOP (General Inter-Orb Protocol). This Protocol Defines the Format of the Messages That Are Passed Over the ORB to and From the Client and Object. When GIOP Runs Over TCP/IP it is a Part of IIOP. SECP Will Be Another Layer Below the GIOP That Adds Security to Message Transportation. • SECP Will Transport GIOP Messages Security • SECP is Still in Progress. Its Status is “Approved.”
CORBA Security Three Parts to SECP: 1) Circuit Establishment--Creating a Secure, Bidirectional Connection Between a Client and Target. 2) Context Establishment -- Allowing Both a Client and Target to Set up Security Contexts, and Based off the Specified Security Context of the Client and the Target, Certain Behaviors May Take Place. 3) Message Transport-- Final Phase of the SECP, and This Phase Securely Transports the Messages and Then Destroys the Contexts.
CORBA Interoperability • CORBA’s Whole Focus Is Interoperability! • We All Know What Corba is Now, So We See How Using an IDL, We Can Create a Client in One Software Platform That Can Access a Target Object Through the ORB. • So, That’s it, Right? This Part is Done.
CORBA Interoperability • Wrong! There Are Other Types of Interoperability. • What About From One ORB to Another ORB? • What About From One System That is CORBA Compliant to a Legacy System That isn’t CORBA Compliant? • What About Security Policies on a System? Sometime This System Can Be Accessed, Sometimes it Can’t Be. • So, There Are Also Implementational and Administrative Types of Interoperability. • How Can We Handle This?
CORBA Interoperability • With a Specification, of Course! • CORBA Interoperability Architecture • CORBA Defines a Domain—Group of Objects That Do Not Communicate With Other Objects. • To Communicate Between Domains, There Must Be a Bridge. Some Terms: • In-Line Bridging—All the Domains Are Within One ORB. • Request Level Bridging—Domains Are Not Within One ORB. (More Interesting Than In-Line Bridging) • DII—Dynamic Invocation Interface—Can Invoke Methods on Objects Without Knowing What the Target Interfaces Are at Compile Time. • DSI—Dynamic Skeleton Interface—Servers Don’t Know the Types of the Objects They Are Going to Access Ahead of Run Time.
CORBA Interoperability • Request Level Bridging: • 1) The Client ORB Simulates That the Server ORB and the Bridge Are Actually Part of Its Own Object. The Client Requests This Object Using the Dynamic Skeletal Interface (DSI). • 2) The DSI, Using the Bridge, Translates the Requests. • 3) The DSI Invokes the Request Through DII of the Server. Any Results Are Passed Back. • Note: To Do This, the Bridge Must Have Access to the Interface Repository, or Have Pre-defined Knowledge of the Object Specifications. Also, the Standard Method for Transferring This Information is GIOP.
J2EE Environment • N-tier architecture Enterprise Information Server Client Side Middle Tiers Web Application Servers: JSP, Servlets, HTML, XML RDBMS, ERP, Legacy Apps EJB Server, JNDI, JMS, JavaMail Source: Enterprise Java Security
J2EE Enterprise Archive • J2EE Application code is contained within an Enterprise Archive (EAR) that consists of • EJB Module (JAR File) • Web Module (WAR File) • Application Client Module (JAR File) • Utilities • Deployment Descriptor File (XML document) • Specifies contents of EAR, deployment instructions, security settings to be enforced by runtime environment • Each WAR, JAR also contain deployment descriptor • Each module is run in a container which is the interface b/w the module and outside world
EJB Modules • Reside in EJB Containers • Provide interface b/w the EJB and app server which EJB resides • EJB can be accessed • via RMI-IIOP • via JMS • via Web Service over SOAP • Three types of beans • Entity, Session and Message-Driven
Web Modules • An Application that can be accessed over the Web • Consists of Servlets, JSP Pages, HTML • Stored in WAR files • Java Servlets • platform-independent server side software • run in a servlet or Web container • Web container is responsible for servlet creation, deletion • Java code with HTML • Java Server Pages • Used to generate and display dynamic content on the Web • JSP are translated into Servlets at run-time at first request • HTML with Java code
JDBC • J2EE Applications Interact With Databases Through Java Database Connectivity (JDBC) API • JDBC Supports Four Types of Drivers • JDBC-ODBC Bridge • Native-API Partly Java Bridge • JDBC-NET Pure Java Driver • Native-protocol Pure Driver Java • Drivers Return a Connection Object Which Represents a Connection to the Database • Statement Objects Contain Methods to Pass SQL Statements to Database and Return Results • ResultSet Objects Contain the Results of SQL Queries • Scrollable, Updateable, Holdable
J2EE Security • J2EE Provides Declarative and Programmatic Security • Declarative Security • Security Constraints Are Specified in Deployment Descriptors • At Run-time the Container Uses Security Policy Configured Specified in Deployment Descriptors to Enforce Authorization • Allows Better Application Portability • Programmatic Security • Security Is Hard-coded Into Application Code • Harder to Maintain • Used to Enforce Constraints That Can’t Be Expressed Through Declarative Security
Define Security Role • Definition of Security Role Defined Within the Deployment Descriptor of an EAR <assembly-descriptor> <security-role> <description> This role is for tellers </description> <role-name>Teller</role-name> </security-role> <assembly-descriptor>
Role Access To EJB • EJB methods can be associated with method-permission elements in EJB module deployment descriptors <method-permission> <role-name>Teller</role-name> <method> <ejb-name>AccountBean</ejb-name> <method-name>getBalance</method-name> </method> </method-permission> Source:Enterprise Java Security
Role Access To Web Resources • Access to web resource URI’s can be specified by security-constraint elements in web module deployment descriptors <security-constraint> <web-resource-collection> <web-resource-name> Account servlet protected area </web-resource-name> <url-pattern>/finance/account</url-pattern> <http-method>GET</http-method> </web-resource-collection> <auth-constraint> <description>Teller can access the URIs</description> <role-name>Teller</role-name> </auth-constraint> </security-constraint> Source:Enterprise Java Security
Mapping Principals To Roles • Mapping of Principals to Security Roles is done by the Deployer • If calling principal is in one of the security roles authorized to access method, then calling Principal is allowed access • To the URI for Web Resources • To the EJB method for EJB
Declarative Security Policies • Security Policies associated with URI’s and EJB include • Login-configurations associated with URI • Form-based logins • Authorization policies associated with URIs and EJB based on security roles • Principal-delegation policies that apply to Web Apps and EJB • Connection policies associated with JCA connectors that dictate how apps access EIS in a secure manner
Login Configurations • J2EE security authenticates a principal based on the authentication policy of the resource the principal has requested • J2EE Application Server is responsible for authenticating users • The authentication method is specified through the auth-method element in the login-config descriptor • Three types of authentication • HTTP authentication • Form-based authentication • Certificate-based authentication
HTTP Authentication • User must provide userID and password pair, typically as part of HTTP header • Done as follows • WAS issues HTTP unauthorized client error (401) and a WWW_Authenticate HTTP header • Web browser pops up dialog window • User enters id and password • Information is sent to Web Server • WAS extracts info, authenticates user
HTTP Authentication (Cont) • With HTTP authentication a Realm must be specified • Determines scope of security data • Used in HTTP 401 challenge to inform user of the name of the application domain • Two types • Basic: userID and password passed as cleartext • Digest: userID and hash value of password are sent <login-config> <auth-method>BASIC</auth-method> <realm-name>SampleAppRealm</realm-name> </login-config>
Form-based Authentication <login-config> <auth-method>FORM</auth-method> <form-login-config> <form-login-page>/login.html</form-login-page> <form-error-page>/login_fail.html</form-error-page> </form-login-config> </login-config> • When client requests protected resource, server redirects the client to an HTML form to obtain userID and password • If authentication fails, user is redirected to error page
Certificate-based (X.509) <login-config> <auth-method>CLIENT-CERT</auth-method> </login-config> • Web Server must be configured to perform mutual authentication over SSL • Client must make request over HTTPS • Otherwise server will redirect the client over HTTPS • Client must present certificate to establish a connection • If SSL connection is made, server knows the client has presented it’s own certificate and no one else • Client certificate is then mapped to a principal that has been assigned 0 or more security roles
Creating Secure Channel <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> • Specifies the request to a URI resource should be initiated over HTTPS
User-Data Constraints • There are times we want to specify communication must be done over SSL • This can be done by setting the <transport-guarantee> element in the <user-data-constraint> descriptor <security-constraints> <web-resource-collection> <web-resource-name>ReservationServlet</web-resource-name> <url-pattern>/travel/reserve</url-pattern> </web-resource-collection> <user-data-constraint> <transport-guarantee> CONFIDENTIAL </transport-guarantee> </user-data-constraint> <security-constraints>
Programmatic Security • How to obtain Subject and Principal information programmatically? • EJB methods in interface javax.ejb.EJBContext • isCallerInRole( ) • Test whether current caller has been assigned security role • getCallerPrincipal( ) • Obtain Principal object representing the current caller • Servlet/JSP methods in interface javax.servlet.http.HttpServletRequest • isUserInRole( ) • Returns true if current caller is assigned security role • getUserPrincipal( ) • return Principal object representing the current authenticated user • getRemoteUser( ) • Return the name of the authenticated user, null otherwise
Programmatic Security with JAAS • Java Authentication and Authorization Service • Provided in javax.security.auth package • Developed to provide role-based authentication, to supplement code-based authentication • Uses Pluggable Authentication Modules (PAMs) • Requires authentication and authorization routines to be explicitly called
JAAS Authentication • Determines the Subject of the user (or service) making the request • Each Subject is associated with identities or principals • Each Subject can haveattributes or credentials Subject Principals Credentials Joe Smith 000-11-4444 123321 X.509 updatePermission …
JAAS Architecture Application LoginContext RdbmsLoginModule JndiLoginModule LoginModules RDBMS LDAP Server NT Authentication Kerberos Authentication Biometric Authentication
Authentication Steps • App Creates LoginContext object and passes CallBackHandler • Reads JAAS configuration file to determine which LoginModules to load • App Calls LoginContextlogin( ) method • Calls the login( ) methods of each LoginModule • Each login( ) method performs authentication, possibly using the CallBackHandler to get input from user • Each LoginModule is specified as Required or Optional • Overall authentication succeeds only if all Required LoginModules succeed • App obtains the Subject by calling LoginContext getSubject( ) • App obtains the Principals by calling Subject getPrinciples( )
JAAS Authorization • By default, all J2EE resources within a WAS are accessible unless they are explicitly protected • JAAS Enforces Principal-Based Authorization • access to resources are based on the current Principal Steps include: • Associate a Subject (and Principals) with a thread of execution • Use the Subject.doAs( ) or Subject.doAsPrivileged( ) methods that execute some privileged code • Update Security Policy Files • Specify grant entries that describe codeSources and/or Principals authorized to perform Privileged Actions
Benefits/Limitations Of JAAS • JAAS compliments the security features of J2SE • Multiple authentication mechanisms can be “stacked” upon each other and easily configured through configuration file • Supports vendor-neutral authentication mechanisms • JAAS is not equally supported by J2EE Application Servers
Web Service Clients • Three ways for a client to invoke a Web Services methods are • Static stubs • Dynamic proxy • Dynamic invocation interface (DII) • Static Stubs (Generated Stubs) are created at development time • Dynamic Proxy – stub classes are created at runtime • Dynamic Invocation Interface – Client can call web services which it has no Service Definition Interface or stubs
J2EE Interoperability • Interoperability is primarily achieved through RMI and Java IDL • RMI allows J2EE Applications to communicate with remote Java Applications • uses the Java Remote Messaging Protocol (JRMP) • Allows for Objects to be call-by-value since objects can be serialized and sent across network • Java IDL Allows J2EE Apps to communicate with objects in other languages • uses the CORBA-standard Internet Inter-Orb Protocol (IIOP) • Only supports call-by-reference
Best of Both Worlds: RMI-IIOP • RMI over IIOP (RMI-IIOP) combines RMI’s ease of use with CORBA’s interoperability • Jointly developed by IBM and Sun • Uses IIOP as the communication protocol • Allows developers to write remote interfaces in Java, that can be implemented in Java, or any other CORBA compliant language • Supports call-by-reference and call-by-value
.NET ADO.NET • ADO.NET is the New Database Technology of the .NET Platform. • ADO is a Language Independent Model That is the Major Benefit of Microsoft's Universal Data Access Strategy. • .NET Includes Data Providers for Several Types of Databases Including Oracle, OLE, and SQL Server. • The Underlying Technique of ADO.NET is the Dataset Which Promotes a Disconnected Technique Where Data Will be Represented in Local Memory.
ADO.NET • The DataAdapter is Responsible for Filling in the Data Set Object With Data and Schema Information. The DataAdapter Works in Conjunction With the DataReader Class to Fill the DataSet Object. • The DataReader Class Can Only Read From a Database. The Object Contains One Row of Data. Must Reconnect to Get the Subsequent Rows. • The DataSet Is Broken Down Into 2 Subcomponents the DataTable Class and a Collection of Relationships for the Corresponding Tables.
.NET Web Services • Microsoft Makes Use of XML (Over the SOAP and HTTP Protocols) in its .NET Framework for Implementing Web Services. The Main Reason is That With XML the Client Does Not Need to Know the Language the Web Services Are Implemented in. • .NET has a command line tool to generate source code from a WSDL into a specified language (VB.NET or C#). The source code can be added to a project and instantiating an object will enable the use of the web service. • There Are 4 Components in the .Net Infrastructure That Allow Clients to Find and Use Web Services. • Directory • Discovery • Description • Wire format
.NET Security • There Are 5 Security Facets in .NET • Code-Based Access Control - Giving Permission at the Code Level to Access Resources • Role-Based Access Control – Security Enforcing a User’s Permissions for an Application, Based on the User’s Role. • Secure Code Verification and Execution - Analyzing the MSIL and Insuring the Executing Code Is Behaving. • Secure Communication – Insuring That Data Is Being Passed in a Secure Manner Both Locally or Remotely to Avoid Message Tampering. • Secure Code and Data Protection - Insuring That Code Has Been No Unauthorized Changes by Utilizing Cryptographic Solutions and Signatures. • The Focus Will Be on Authorization, Authentication, and Cryptography in RBAC and Secure Code Execution.
.NET Security • Authentication- .NET supports several different methods for authentication to determine credentials. • Windows based- Use of Principal and Identity Objects in conjunction with technologies like IIS pr Certificates to verify identity. • Identity- similar to a user account contains Name, IsAuthenticated, and AuthenticatedType. • Principal – is associated with an identity and is a list of roles for the identity. • Form based- Using web based HTML form to verify identity. Then using cookies in ASP.NET the information can be used in the future. • Passport- Microsoft specific technology and supported directly in ASP.NET. Similar to form based authentication. Uses a central server to check a user’s credentials.
.NET Security • Authorization- There are two ways to use authorization in .NET using Security demands or Principals. • Security demands: Places a restriction on an entire class or methods within a class. Limits the use of class based on full trust or partial trust users. • Principals: They are very similar to security demands as you can place restrictions on classes or methods. After defining roles for them the principal object can use the IsInRole() method to see the status of the current user.