the role of directories in single sign on systems
play

The role of directories in Single Sign on Systems Victoriano Giralt - PowerPoint PPT Presentation

Mar 30, 2023 •328 likes •1.39k views

The Dark Ages The Enlightenment The Industrial Revolution The XXI century Summary The role of directories in Single Sign on Systems Victoriano Giralt Central Computing Facility University of Malaga TERENA EuroCAMP Ljubljana April 3rd

  1. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Introduction to technical matters How we can achieve XXI century directory based AuthN/Z We have different options depending on the kind of applications we want to integrate the kind of infrastructure we are using the desired level of interoperability Victoriano Giralt Directories and SSO

  2. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Introduction to technical matters How we can achieve XXI century directory based AuthN/Z We have different options depending on the kind of applications we want to integrate the kind of infrastructure we are using the desired level of interoperability Web applications, easier to integrate into the SSO picture Victoriano Giralt Directories and SSO

  3. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Introduction to technical matters How we can achieve XXI century directory based AuthN/Z We have different options depending on the kind of applications we want to integrate the kind of infrastructure we are using the desired level of interoperability Web applications, easier to integrate into the SSO picture Traditional applications are a much different issue Victoriano Giralt Directories and SSO

  4. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Victoriano Giralt Directories and SSO

  5. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Works for web and non web applications Victoriano Giralt Directories and SSO

  6. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Works for web and non web applications as long as they are on MS-Windows Victoriano Giralt Directories and SSO

  7. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Works for web and non web applications as long as they are on MS-Windows Not much interoperable Victoriano Giralt Directories and SSO

  8. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Works for web and non web applications as long as they are on MS-Windows Not much interoperable Can do AuthN to another LDAP using ADAM Victoriano Giralt Directories and SSO

  9. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Server The MS way of things Designed for a Microsoft centric environment Works for web and non web applications as long as they are on MS-Windows Not much interoperable Can do AuthN to another LDAP using ADAM Can be tamed with the help of Kerberos Victoriano Giralt Directories and SSO

  10. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Federation Services The F word comes into play Designed for interoperating with non Microsoft environments Victoriano Giralt Directories and SSO

  11. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Federation Services The F word comes into play Designed for interoperating with non Microsoft environments Works with LDAP for AuthN thanks to ADAM Victoriano Giralt Directories and SSO

  12. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Federation Services The F word comes into play Designed for interoperating with non Microsoft environments Works with LDAP for AuthN thanks to ADAM Uses SAML for federating Victoriano Giralt Directories and SSO

  13. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Federation Services The F word comes into play Designed for interoperating with non Microsoft environments Works with LDAP for AuthN thanks to ADAM Uses SAML for federating Only for Web SSO Victoriano Giralt Directories and SSO

  14. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Active Directory Federation Services The F word comes into play Designed for interoperating with non Microsoft environments Works with LDAP for AuthN thanks to ADAM Uses SAML for federating Only for Web SSO Available on Windows 2003 Server R2 Victoriano Giralt Directories and SSO

  15. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Oracle SSO You play by our rules Centred around iAS and OID Victoriano Giralt Directories and SSO

  16. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Oracle SSO You play by our rules Centred around iAS and OID Mainly Web SSO Victoriano Giralt Directories and SSO

  17. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Oracle SSO You play by our rules Centred around iAS and OID Mainly Web SSO It is not clear it can integrate non web apps Victoriano Giralt Directories and SSO

  18. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Oracle SSO You play by our rules Centred around iAS and OID Mainly Web SSO It is not clear it can integrate non web apps Can integrate external web apps via Apache module (mod_osso) or SDK Victoriano Giralt Directories and SSO

  19. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Oracle SSO You play by our rules Centred around iAS and OID Mainly Web SSO It is not clear it can integrate non web apps Can integrate external web apps via Apache module (mod_osso) or SDK Has an API for interoperation but needs user synchronisation Victoriano Giralt Directories and SSO

  20. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Victoriano Giralt Directories and SSO

  21. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Based on X.509 Attribute Certificates Victoriano Giralt Directories and SSO

  22. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Based on X.509 Attribute Certificates The certificates do a strong bind between holder and granted privilege Victoriano Giralt Directories and SSO

  23. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Based on X.509 Attribute Certificates The certificates do a strong bind between holder and granted privilege Privileges granted can range from University degrees through file access Victoriano Giralt Directories and SSO

  24. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Based on X.509 Attribute Certificates The certificates do a strong bind between holder and granted privilege Privileges granted can range from University degrees through file access Attribute certificates are stored in the holder’s entry in the directory Victoriano Giralt Directories and SSO

  25. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Permis is an AAI with a Privilege Management Infrastructure Based on X.509 Attribute Certificates The certificates do a strong bind between holder and granted privilege Privileges granted can range from University degrees through file access Attribute certificates are stored in the holder’s entry in the directory Digitally signed policies are also stored in the owner’s entry Victoriano Giralt Directories and SSO

  26. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms Victoriano Giralt Directories and SSO

  27. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms PMI Privilege Management Infrastructure Strong authorization infrastructure that extends X.509 PKIs. It is based upon the same cryptographic principles. Victoriano Giralt Directories and SSO

  28. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms PMI Attribute Certificate AC Strong binding of owner and attribute, based on digital signatures. Victoriano Giralt Directories and SSO

  29. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms PMI Attribute Authority AC The entity that grants the privileges by issuing the Attribute Certificate to the holder. AA E.g: a University, the owner of a file or a manager. Victoriano Giralt Directories and SSO

  30. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms PMI Certificate owner AC The entity to which the privileges have been granted. AA Owner Victoriano Giralt Directories and SSO

  31. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms PMI Attributes AC Part of the certificate that is signed, like the public key in a PKI. AA Can be used to store privileges and policies. Owner Attributes Victoriano Giralt Directories and SSO

  32. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms Victoriano Giralt Directories and SSO

  33. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms SOA Source Of Authority Equivalent to a PKI’s Root CA. It is the root of trust. A resource access control system implicitly trusts the SOA for granting access rights and privileges to it. The SOA issues ACs to AAs and end users. Victoriano Giralt Directories and SSO

  34. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms SOA Policy Decision Point PDP Entity where AuthZ policies are stored, in a signed AC, and AuthZ decisions are taken based on such policies. Victoriano Giralt Directories and SSO

  35. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms SOA Policy Enforcement Point PDP The entity that protects access to a resource and PEP acts based on queries to the PDP . Victoriano Giralt Directories and SSO

  36. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms SOA Delegation Issuing Service PDP An entity used by the AAs to issue delegation ACs. PEP It allows for better control, auditing and logging of DIS the delegation of privileges. It can also reduce complexity of the privilege issuing chain. Victoriano Giralt Directories and SSO

  37. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP PERMIS X.509 based AuthZ policies Some PERMIS key terms SOA Preventing privilege abuse PDP The owner of an AC marked as no assertion can PEP grant the indicated privileges but cannot use them. Useful for the DIS. DIS Non assertion Victoriano Giralt Directories and SSO

  38. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. Victoriano Giralt Directories and SSO

  39. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. It can use the directory for AuthN Victoriano Giralt Directories and SSO

  40. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. It can use the directory for AuthN It can control access to many kinds of applications Victoriano Giralt Directories and SSO

  41. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. It can use the directory for AuthN It can control access to many kinds of applications ADS can use Kerberos for AuthN Victoriano Giralt Directories and SSO

  42. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. It can use the directory for AuthN It can control access to many kinds of applications ADS can use Kerberos for AuthN There are rumours of someone having used it for AuthN with OID Victoriano Giralt Directories and SSO

  43. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP Kerberos taming the beasts Kerberos, though old, will take us into the XXI century of SSO. It can use the directory for AuthN It can control access to many kinds of applications ADS can use Kerberos for AuthN There are rumours of someone having used it for AuthN with OID Unfortunately it cannot be used for AuthN to web apps from non Windows clients Victoriano Giralt Directories and SSO

  44. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP eduPermission and eduPermissionGroup a work in progress It is a discussion in progress in MACE about ways of storing permissions in the directory. Victoriano Giralt Directories and SSO

  45. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP eduPermission and eduPermissionGroup a work in progress It is a discussion in progress in MACE about ways of storing permissions in the directory. Subentries eduPermission: as objects subentries (Tom Barton’s) The permissions objects are stored as subentries of the holder’s entry. It might have scaling problems if holders are persons, as the numbers may explode. Victoriano Giralt Directories and SSO

  46. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP eduPermission and eduPermissionGroup a work in progress It is a discussion in progress in MACE about ways of storing permissions in the directory. Subentries eduPermissionGroup (Brendan Belina’s) Groups Permissions are described as group entries in the directory and are granted to persons by way of inclusion in the group, using standard membership mechanisms. Victoriano Giralt Directories and SSO

  47. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP eduPermission and eduPermissionGroup a work in progress It is a discussion in progress in MACE about ways of storing permissions in the directory. Subentries Permissions are objects Groups Both approaches share the way they describe permissions, as objects with multiple attributes for Objects storing their properties such as the application to which they are applied. Victoriano Giralt Directories and SSO

  48. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Assigns access rights to the designated application: Victoriano Giralt Directories and SSO

  49. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Assigns access rights to the designated application: Function entitlement the URN describes a right for a user or role Victoriano Giralt Directories and SSO

  50. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Assigns access rights to the designated application: Function applAccess kind of right, access to an application in this case. Victoriano Giralt Directories and SSO

  51. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Assigns access rights to the designated application: Function SolicitudGasto application the right is granted on. Victoriano Giralt Directories and SSO

  52. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Assigns access rights to the designated application: Function LEVEL granted access level, application specific: RUG, ROU, RGE Victoriano Giralt Directories and SSO

  53. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function LDAP search Usage The application does a standard directory search to find out if the user that has been authenticated has the right to use it and the access level that has been granted to her. Victoriano Giralt Directories and SSO

  54. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function Query via web service Usage The application queries a web service with user and application identifier as inputs and obtains the access level or the absence of the right to use. Victoriano Giralt Directories and SSO

  55. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function WebSSO AuthZ assertion Usage The authentication server has information about the accessed resource, once the user is AuthN’d, retrieves application specific AuthZ information from the entitlements in the user’s entry in the directory, and passes them onto the resource Victoriano Giralt Directories and SSO

  56. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function Unique authorization point Usage All of an object’s authorisations, both explicit and implicit, are centrally kept in a directory entry. Advantages Victoriano Giralt Directories and SSO

  57. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function A sole authorization model Usage URNs allow us to express all authorization in a common form, with application specific semantics. Advantages Victoriano Giralt Directories and SSO

  58. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP URNs in Entitlements for AuthZ as it is in use at UMA (by example) irisUserEntitlement = urn:mace:rediris.es:uma.es: entitlement:applAccess:SolicitudGasto: LEVEL Function Agent-Function-Qualifier Usage Who can do What on Which object Advantages Victoriano Giralt Directories and SSO

  59. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies With regard to AuthZ, we can consider SPOCP as Victoriano Giralt Directories and SSO

  60. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies With regard to AuthZ, we can consider SPOCP as Engine AuthZ policy engine AuthZ policies can be described and applied to resources using SPOCP Victoriano Giralt Directories and SSO

  61. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies With regard to AuthZ, we can consider SPOCP as Engine AuthZ policy service Service SPOCP is implemented as a service that resources query for taking AuthZ decisions based on the policy engine. Victoriano Giralt Directories and SSO

  62. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies With regard to AuthZ, we can consider SPOCP as Engine AuthZ source aggregator Service We can use SPOCP for aggregating information Aggregator on which AuthZ decisions can be based, through the use of boundary conditions. Victoriano Giralt Directories and SSO

  63. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies With regard to AuthZ, we can consider SPOCP as Engine Service Aggregator Most important, it allows us to use most of the presented methods of AuthZ, and then some. Victoriano Giralt Directories and SSO

  64. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies Some SPOCP key terms Victoriano Giralt Directories and SSO

  65. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies Some SPOCP key terms S-Expression Policy language The access policies to resources are described using expressions like: (spocp (resource etc passwd)(action write)(subject (uid 0))) Victoriano Giralt Directories and SSO

  66. Intro ADS OSSO PERMIS Technical details Kerberos eduPermission URNs for AuthZ SPOCP SPOCP multiple source AuthZ policies Some SPOCP key terms S-Expression the Less-Permissive function Policy engine By applying this function, the engine guarantees that the querying party will receive a formally correct answer, thus assuring the right AuthZ decision. Victoriano Giralt Directories and SSO

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Single sign-on enabled OpenCms Architecture for Single sign-on implementation into OpenCms

Single sign-on enabled OpenCms Architecture for Single sign-on implementation into OpenCms

Single sign-on enabled OpenCms Architecture for Single sign-on implementation into OpenCms Pavel Slav ek, pavel.slavicek@qbizm.cz Brno, The Czech Republic, 2. 5. 2008 Content Single sign-on introduction (SSO) Introduction to

959 views • 24 slides
Cloud Filesystem Jeff Darcy for BBLISA, October 2011 What is a Filesystem? The thing

Cloud Filesystem Jeff Darcy for BBLISA, October 2011 What is a Filesystem? The thing

Cloud Filesystem Jeff Darcy for BBLISA, October 2011 What is a Filesystem? The thing every OS and language knows Directories, files, file descriptors Directories within directories Operate on single record (POSIX: single

450 views • 34 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
Chapter 11 File Systems and Directories 1 Hofstra University - CSC005 11/7/06 Chapter Goals

Chapter 11 File Systems and Directories 1 Hofstra University - CSC005 11/7/06 Chapter Goals

Chapter 11 File Systems and Directories 1 Hofstra University - CSC005 11/7/06 Chapter Goals Describe the purpose of files, file systems, and directories Distinguish between text and binary files Identify various file types by their

772 views • 31 slides
Chapter 6: File Systems File systems n Files n Directories & naming n File system

Chapter 6: File Systems File systems n Files n Directories & naming n File system

Chapter 6: File Systems File systems n Files n Directories & naming n File system implementation n Example file systems Chapter 6 CS 1550, cs.pitt.edu 2 (originaly modified by Ethan Long-term information storage n Must store large amounts

1.01k views • 66 slides
Single sign-on (SSO) Presentation Tiit Erm 106572 IVCMM Main points Introduction Old

Single sign-on (SSO) Presentation Tiit Erm 106572 IVCMM Main points Introduction Old

Single sign-on (SSO) Presentation Tiit Erm 106572 IVCMM Main points Introduction Old approach in multiple systems SSO Security Benefits Common SSO based configurations Examples of SSO usage Conclusion 15/12/11

379 views • 16 slides
Files and Streams File Directories File Directory A set of files and other (sub)directories

Files and Streams File Directories File Directory A set of files and other (sub)directories

Files and Streams File Directories File Directory A set of files and other (sub)directories Principle function: help people find their way around data on a system Implementation Directories are stored as additional files OS maintains a file

486 views • 9 slides
Chapter 6: File Systems File systems Files Directories & naming File system

Chapter 6: File Systems File systems Files Directories & naming File system

Chapter 6: File Systems File systems Files Directories & naming File system implementation Example file systems Chapter 6 CMPS 111, UC Santa Cruz 2 Long-term information storage Must store large amounts of data

829 views • 57 slides
How are file systems implemented? How do we represent CSCI [4|6]730 Directories

How are file systems implemented? How do we represent CSCI [4|6]730 Directories

How are file systems implemented? How do we represent CSCI [4|6]730 Directories (link file names to file structure) Operating Systems The list of blocks containing the data Other information such as access

225 views • 4 slides
File Systems 1. Organizing data into files and directories and supporting primitives to

File Systems 1. Organizing data into files and directories and supporting primitives to

CSE 421/521 - Operating Systems File Systems Fall 2011 Provides organized and efficient access to data on secondary storage: Lecture - XVIII File Systems 1. Organizing data into files and directories and supporting primitives to

345 views • 6 slides
Chapter 4: Files and Directories CMPS 105: Systems Programming Prof. Scott Brandt T Th 2-3:45

Chapter 4: Files and Directories CMPS 105: Systems Programming Prof. Scott Brandt T Th 2-3:45

Chapter 4: Files and Directories CMPS 105: Systems Programming Prof. Scott Brandt T Th 2-3:45 Soc Sci 2, Rm. 167 Files and Directories Chapter 3 covered basic file I/O Chapter 4 covers more details stat File attributes

441 views • 41 slides
Files & Directories - II implementing pwd set-UID-bit Tevfik Ko ar

Files & Directories - II implementing pwd set-UID-bit Tevfik Ko ar

CSC 4304 - Systems Programming In Todays Class Fall 2008 Directory Structure in UNIX inode manipulation Lecture - VII Files & Directories - II implementing pwd set-UID-bit Tevfik Ko ar Louisiana State

524 views • 4 slides
Files and Directories Dalhousie University Winter 2019 Files and Directories Much of the

Files and Directories Dalhousie University Winter 2019 Files and Directories Much of the

CSCI 2132: Software Development Norbert Zeh Faculty of Computer Science Files and Directories Dalhousie University Winter 2019 Files and Directories Much of the operation of Unix and programs running on Unix can be described as processes

701 views • 44 slides
How are file systems implemented? ! How do we represent CSCI [4|6]730 Directories (link file

How are file systems implemented? ! How do we represent CSCI [4|6]730 Directories (link file

How are file systems implemented? ! How do we represent CSCI [4|6]730 Directories (link file names to file structure) Operating Systems The list of blocks containing the data Other information such as access control list or

327 views • 4 slides
Single Sign- -On across On across Single Sign Web Services Web Services Ernest Artiaga

Single Sign- -On across On across Single Sign Web Services Web Services Ernest Artiaga

Single Sign- -On across On across Single Sign Web Services Web Services Ernest Artiaga Artiaga Ernest CERN - - OpenLab OpenLab Security Workshop Security Workshop April 2004 April 2004 CERN Outline Outline Motivation and

352 views • 23 slides
Single Sign On SimpleSAMLphp CivicActions | SSO | Dan Gurin | tweeter@dgurin | Drupal.org +

Single Sign On SimpleSAMLphp CivicActions | SSO | Dan Gurin | tweeter@dgurin | Drupal.org +

Single Sign On SimpleSAMLphp CivicActions | SSO | Dan Gurin | tweeter@dgurin | Drupal.org + GitHub + LinkedIn = DANGUR Enterprise level user account costs Administration Setup Retire Support Password resets

669 views • 24 slides
Occurrences of exactly solvable PDEs in combinatorial problems Alois Panholzer Institut f ur

Occurrences of exactly solvable PDEs in combinatorial problems Alois Panholzer Institut f ur

PDEs and combinatorial problems Label patterns On-line selection Urn models Occurrences of exactly solvable PDEs in combinatorial problems Alois Panholzer Institut f ur Diskrete Mathematik und Geometrie TU Wien, Austria

1.28k views • 106 slides
On a storage process for fluid networks with multiple L evy input Krzysztof D ebicki

On a storage process for fluid networks with multiple L evy input Krzysztof D ebicki

On a storage process for fluid networks with multiple L evy input Krzysztof D ebicki University of Wroc law, Poland Presentation at EVA 2005 Gothenburg, Sweden August, 2005 1 Outline of the talk Two-node tandem network

652 views • 14 slides
Grafting Coordinates for Teichm uller Space October 2006 David Dumas (ddumas@math.brown.edu)

Grafting Coordinates for Teichm uller Space October 2006 David Dumas (ddumas@math.brown.edu)

Grafting Coordinates for Teichm uller Space October 2006 David Dumas (ddumas@math.brown.edu) http://www.math.brown.edu/ddumas/ (Joint work with Mike Wolf) 2 Grafting Start with X , a closed hyperbolic surface, and , a simple

338 views • 13 slides
CS 170 Section 1 Divide-and-Conquer Owen Jow | owenjow@berkeley.edu Agenda Introduction

CS 170 Section 1 Divide-and-Conquer Owen Jow | owenjow@berkeley.edu Agenda Introduction

CS 170 Section 1 Divide-and-Conquer Owen Jow | owenjow@berkeley.edu Agenda Introduction Asymptotics review Divide-and-conquer Master theorem Complex numbers Introduction About Me Owen Jow

559 views • 25 slides
Models of language Evolution Session 09: Evolution of Pragmatic Strategies Roland M uhlenbernd

Models of language Evolution Session 09: Evolution of Pragmatic Strategies Roland M uhlenbernd

S IGNALING G AME B EHAVIOURAL S TRATEGIES & U PDATE D YNAMICS M ODELING PRAGMATIC PHENOMENA Models of language Evolution Session 09: Evolution of Pragmatic Strategies Roland M uhlenbernd University of T ubingen S IGNALING G AME B

361 views • 32 slides
A line-breaking construction of the stable trees Christina Goldschmidt (Oxford) Joint work with

A line-breaking construction of the stable trees Christina Goldschmidt (Oxford) Joint work with

AofA15, Strobl, Austria, 8-12 June 2015 A line-breaking construction of the stable trees Christina Goldschmidt (Oxford) Joint work with B en edicte Haas (Paris-Dauphine) Uniform random trees Let T n be the set of unordered trees on n

1.91k views • 156 slides
31. Generic Refactoring for Programming and Modeling Languages Jan Reimann, Mirko Seifert, Prof.

31. Generic Refactoring for Programming and Modeling Languages Jan Reimann, Mirko Seifert, Prof.

Technical University Dresden Department of Computer Science Chair for Software Technology 31. Generic Refactoring for Programming and Modeling Languages Jan Reimann, Mirko Seifert, Prof. Uwe Amann 1. 1. Fro rom C Code to to Mo Models ls

382 views • 14 slides
Precise Documentation: The Key To Better Software David Lorge Parnas Abstract The prime cause of

Precise Documentation: The Key To Better Software David Lorge Parnas Abstract The prime cause of

Middle Road Software, Inc. Precise Documentation: The Key To Better Software David Lorge Parnas Abstract The prime cause of the sorry state of the art in software development is our failure to produce good design documentation. Poor

627 views • 58 slides

More recommend