security and authentication

< <

Get flash to fully experience Pearltrees

Techblog - From 0 to cryptography

Published on 18 September 2012 by Tiberiu Barbu

http://techblog.rosedu.org/from-0-to-cryptography.html

http://www.ejbca.org/installation.html#RedHat%20Enterprise%20Linux%20quick%20start

Open Source PKI Certificate Authority - Installation

EJBCA Installation EJBCA is a fully functional Certificate Authority built in Java.

1dent1ty cHa0s: Issues when binding to AD LDS (ADAM) userProxy

http://www.identitychaos.com/2009/08/issues-when-binding-to-ad-lds-adam.html

aka "Configuring SSL for AD LDS on Windows Server 2008 Server Core"

frequently used SSL commands

http://shib.kuleuven.be/docs/ssl_commands.shtml

using openssl using keytool (included in recent Sun java reference implementations) openssl generate a new private key and matching Certificate Signing Request (eg to send to a commercial CA) openssl req -out MYCSR .csr -pubkey -new -keyout MYKEY .key add -nodes to create an unencrypted private key add -config <openssl.cnf> if your config file has not been set in the environment

http://www.ldapman.org/articles/intro_to_ldap.html

Introduction to LDAP

Michael Donnelly

ca - sample minimal CA application openssl ca [ -verbose ] [ -config filename ] [ -name section ] [ -gencrl ] [ -revoke file ] [ -crl_reason reason ] [ -crl_hold instruction ] [ -crl_compromise time ] [ -crl_CA_compromise time ] [ -crldays days ] [ -crlhours hours ] [ -crlexts section ] [ -startdate date ] [ -enddate date ] [ -days arg ] [ -md arg ] [ -policy arg ] [ -keyfile arg ] [ -key arg ] [ -passin arg ] [ -cert file ] [ -selfsign ] [ -in file ] [ -out file ] [ -notext ] [ -outdir dir ] [ -infiles ] [ -spkac file ] [ -ss_cert file ] [ -preserveDN ] [ -noemailDN ] [ -batch ] [ -msie_hack ] [ -extensions section ] [ -extfile section ] [ -engine id ] [ -subj arg ] [ -utf8 ] [ -multivalue-rdn ]

Open SSL Reference

http://www.openssl.org/docs/apps/ca.html#CONFIGURATION_FILE_OPTIONS

http://www.madboa.com/geek/openssl/#cert-test

OpenSSL Command-Line HOWTO

keytool-Key and Certificate Management Tool

Setting up a basic CA for development certificate issuance via OpenSSL is fairly simple, but most of the tutorials available online don’t show every step.

http://langui.sh/2009/01/18/openssl-self-signed-ca/

OpenSSL Self-Signed CA | langui.sh

Surviving a bad RNG

http://blog.cryptographyengineering.com/2012/03/surviving-bad-rng.html

A couple of weeks ago I wrote a long post about random number generation , which I find to be one of the most fascinating subjects in cryptography -- mostly because of how terrible things get when people screw it up.

For ages the keytool application shipped as part of Java could provide all the functionality to generate a private key and certificate sign request from a Java keystore, but the most basic function, importing a preexisting private key and certificate generated externally, remained overlooked. This is fixed in Java 6, at long last.

Cunning: Importing private keys into a Java keystore using keytool

http://cunning.sharp.fm/2008/06/importing_private_keys_into_a.html

Spring Security

CAS SSO

To use membership, you must first configure it for your site. The following are the basic steps you follow in order to configure membership:

Introduction to Membership

ASP.NET page methods are only as secure as you make them - Encosia

Note: This post is part of a long-running series of posts covering the union of jQuery and ASP.NET: jQuery for the ASP.NET Developer . Topics in this series range all the way from using jQuery to enhance UpdatePanels to using jQuery up to completely manage rendering and interaction in the browser with ASP.NET only acting as a backend API.