604.html

关于jsp的一些好文章 主要介绍一些关于JSP的应用技巧方面的东西

<STYLE type=text/css>
<!--
body,td { font-size:9pt;}
hr { color: #000000; height: 1px}
-->
</STYLE>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">
<HTML>
<HEAD><TITLE>精选文章 >> websphere >> First Eye at IBM WAS(3) continued</title>
</head>
<body >

<p><IMG SRC="../image/jsp001_middle_logo.gif" WIDTH="180" HEIGHT="60" BORDER=0 ALT=""></p>

<table width=100% bgcolor="#cccccc" align=center cellpadding="2" cellspacing="0" border=1 bordercolorlight="#000000" bordercolordark="#FFFFFF">
<tr bgcolor="#EFF8FF"><td>
<a href=http://www.jsp001.com/list_thread.php?int_attribute=2>精选文章</a>
>> <a href=http://www.jsp001.com/list_thread.php?forumid=42&int_attribute=2>websphere</a>
>> First Eye at IBM WAS(3) continued [<a href=http://www.jsp001.com/forum/showthread.php?goto=newpost&threadid=604>查看别人的评论</a>]<br>

<hr>
<p>由 george 发布于: 2001-03-05 06:02</p>

<p><img src="images/icons/icon1.gif" alt="Post" border=0> </p>

<p>Security: ensuring authorized use only<br>
<br>
When enterprise computing was handled solely by a few powerful mainframes located in<br>
information systems (IS) sites, ensuring that only authorized users obtained access to<br>
computing services and information was a fairly straightforward task. In distributed computing<br>
systems, where users, application servers, and resource managers can be spread out across<br>
the world, securing computing system resources has become a much more complicated task. <br>
<br>
Although there are many issues associated with providing security in a distributed computing<br>
system, the underlying issues have not really changed very much. A good security service<br>
provides two main functions: authentication and authorization. <br>
<br>
Authentication takes place when a principal (a user or a computer process) initially attempts<br>
to gain access to a computing resource. At that point, the security service challenges the<br>
principal to prove that the principal is who it claims to be. Human users typically prove who<br>
they are by entering their user IDs and passwords; whereas a process normally presents an<br>
encrypted key. If the password or key is valid, the security service gives the user a token or<br>
ticket that identifies the principal and indicates that the principal has been authenticated. <br>
<br>
After a principal is authenticated, it can then attempt to use any of the resources within the<br>
boundaries of the computing system protected by the security service; however, a principal<br>
can use a particular computing resource only if it has been authorized to do so. Authorization<br>
takes place when an authenticated principal requests the use of a resource and the security<br>
service determines if the user has been granted the privilege of using that resource. Typically,<br>
authorization is handled by associating access control lists (ACLs) with resources that define<br>
which users or processes (or groups of users or processes) are authorized to use the resource.<br>
If the principal is authorized, the principal gains access to the resource. <br>
<br>
In a distributed computing environment, principals and resources must be mutually suspicious<br>
of each other's identity until both have proven that they are who they say they are. This is<br>
necessary because a principal can attempt to fake its identity to get access to a resource, and<br>
a resource can be a trojan horse, attempting to get valuable information from the principal. To<br>
solve this problem, the security service contains a security server that acts as a trusted third<br>
party, authenticating principals and resources so that these entities can prove their identities to<br>
each other. </p>
</td>
  </tr>
</table>

<p>
<CENTER><a href="http://www.jsp001.com/forum/newreply.php?action=newreply&threadid=604">点这里对该文章发表评论</a></CENTER>
<p>该文章总得分是 <font color=red>0</font> 分，你认为它对你有帮助吗？
				[<a href=javascript:void(0) onclick=window.open("http://www.jsp001.com/forum/codeVote.php?threadid=604&intVote=4","","menubar=no,toolbar=no,location=no,directories=no,status=no,resizable=no,scrollbars=no,width=70,height=40,top=0,left=0")>非常多</a>](<font color=red>0</font>) 
				[<a href=javascript:void(0) onclick=window.open("http://www.jsp001.com/forum/codeVote.php?threadid=604&intVote=2","","menubar=no,toolbar=no,location=no,directories=no,status=no,resizable=no,scrollbars=no,width=70,height=40,top=0,left=0")>有一些</a>](<font color=red>0</font>) 
				[<a href=javascript:void(0) onclick=window.open("http://www.jsp001.com/forum/codeVote.php?threadid=604&intVote=1","","menubar=no,toolbar=no,location=no,directories=no,status=no,resizable=no,scrollbars=no,width=70,height=40,top=0,left=0")>无帮助</a>](<font color=red>0</font>) 
				[<a href=javascript:void(0) onclick=window.open("http://www.jsp001.com/forum/codeVote.php?threadid=604&intVote=-1","","menubar=no,toolbar=no,location=no,directories=no,status=no,resizable=no,scrollbars=no,width=70,height=40,top=0,left=0")>是灌水</a>](<font color=red>0</font>) </p>
<script language="javascript" src="http://www.jsp001.com/include/read_thread_script.php?threadid=604"></script>
<p><CENTER>
Copyright &copy; 2001 - 2009 JSP001.com . All Rights Reserved <P>

<IMG SRC="../image/jsp001_small_logo.gif" WIDTH="85" HEIGHT="30" BORDER=0 ALT="">
</CENTER></p>

</body>
</html>