Posts tagged 'LDAP' – Page 2

articles

Web Architecture 3: the Database Backend

Many websites are dynamic, and require the use of a database in their backend. It is surprising to so how unfit this solution is for the problem at hand.

>> Continue reading <<

Global Directory

Global Directory 8: Secure Remote Passwords

Previous parts of this series have used the Global Directory for storing public authentication information in the form of public key material. These mechanisms are much better than the common poor man's choice of using passwords. Unfortunately however, we are all poor men (and women) in some parts of our daily lives; we all use protocols and tools that are not capable of those advanced cryptographic exchanges. And a plethora of scripted web-tools is not improving that! So the ideal would be to publish a password verification method in the Global Directory as well. The SRP mechanism makes this possible.

This article is part of a series of articles about the global directory.

>> Continue reading <<

Global Directory

Global Directory 1: Introduction and Concepts

This episode explains what the ideas are, and defers the technical detail to later articles. This introduction explains how global directories can benefit you, your family and your company. In short, a global directory is a way of retrieving contact information from others, using standard technology, so you can employ tools that download and update contact information without any input from you.

>> Continue reading <<

TLS

Global Directory 7: Decentral TLS Authentication and Authorization

TLS is the protocol that replaces SSL, best known for its protection of secure websites. Connections over TLS can greatly enhance security, but only when key management is properly implemented. When centrally managed, such as by X.509 CA's then all risk concentrates with that CA. Solutions like DANE help to lighten that burden, but decentral organisation of security is in fact a much more solid model. This article explains how to use OpenPGP-based TLS for security connections between systems.

This article is part of a series of articles about the global directory.

>> Continue reading <<