1 / 11

. NET PASSPORT &TRUSTBRIDGE

. NET PASSPORT &TRUSTBRIDGE. SHRIPAD PATIL CS795/895 SECURITY IN DISTRIBUTED SYSTEMS. OVERVIEW. Why Single Sign-on? (sso) How Passport works? Security threats Passport Implementation (.NET) TrustBridge. Single Sign-on. The problem Too many credentials

raja
Download Presentation

. NET PASSPORT &TRUSTBRIDGE

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. .NET PASSPORT &TRUSTBRIDGE SHRIPAD PATIL CS795/895 SECURITY IN DISTRIBUTED SYSTEMS .NET Passport

  2. OVERVIEW • Why Single Sign-on? (sso) • How Passport works? • Security threats • Passport Implementation (.NET) • TrustBridge .NET Passport

  3. Single Sign-on • The problem • Too many credentials • Which one for which app. • Multiple logon • Business Impact • Increased risk of compromise • Reduced Productivity • Increased helpdesk expenses .NET Passport

  4. Single sign-on • The problem • Provisioning new accounts • Password management • Auditing user activity • Managing non-user access • Deploying enterprise applications • Impact • No single view of user • Risk of unauthorized access • Delayed access .NET Passport

  5. Passport - Introduction • single-login system that allows users to navigate across Passport-enabled sites without having to maintain a separate login at each site • User Account contains • A Unique Identifier (PUID) • A User profile • Credentials • 3 security levels • Standard sign-in • Secure channel sign-in • Strong credential sign-in .NET Passport

  6. Passport: How does it works? • Cookies • Ticket cookie • Profile cookie • Visited site cookie .NET Passport

  7. Problem Areas • Central point of attack • Weak user passwords • Cookies/persistent cookies • Bogus merchant attack • Active attack • DNS Attacks .NET Passport

  8. 2. TrustBridge • Microsoft technology to provide AAA (Authentication, Authorization, Accounting) • Designed to achieve cross-organizational resource sharing • Uses windows active directory • Provides resilient defense against security attacks (data mining, Denial Of Service) • Convenient to use • But, do not provide heterogeneous enterprise system support .NET Passport

  9. TrustBridge .NET Passport

  10. Passport Implementation • Requirements:- passport SDK, passport manager, IIS, DNS name • Register application with .NET service manager • Get site ID, Encryption Keys, Certificate • Code, test, then deploy passport application • Compliance review from Microsoft • Launch live web-site .NET Passport

  11. Thank You… .NET Passport

More Related