Trusting Your E-mail with Java Security
By Theodore J. Shrader2003-12-04
Building closed systems
|
|
Parties within a closed system shut themselves off from the outside world. They build direct connections and lock workstations behind secure doors to limit access and ensure protection.
One could argue that this solution addresses each of the four security requirements. The security controls, such as a badge or biometric reader, to the workstations hosting the applications provide a level of authentication and confidentiality. There could be integrity checks for transmitted and stored data, and an administrative authority would engage in a form of publication to ensure that users knew of the existence of other authorized users to the closed system.
For all the positive arguments, the very nature of a closed system is its greatest failing for those wishing to build a successful e-business. This utopian society works well for limited environments, but it becomes untenable for engaging the open world of the Internet. If you're a business, how can new customers find you and do business with you if your gates are closed to all outsiders?
Tutorial Pages:
» Java technologies give you a complete and secure solution
» Security requirements
» Failing scenarios
» Building closed systems
» Using a secret key
» Opening the message
» Public and private keys
» Signing a message
» Signing messages with Java technologies
» Using PKCS and S/MIME
» Encrypting messages
» Conclusion
First published by IBM DeveloperWorks
