cosign 1.9.3
Sponsored Links
cosign 1.9.3 Ranking & Summary
File size:
0.31 MB
Platform:
Any Platform
License:
GPL (GNU General Public License)
Price:
Downloads:
1410
Date added:
2005-12-15
Publisher:
Regents of the University of Michigan
cosign 1.9.3 description
cosign is a Web single sign on system that allows users to authenticate once per session and access any protected Web resources at the institution. When you use cosign the passwords are sent only to a single, central URL.
Sessions have both idle and hard timeouts, and users can logout of all protected services by visiting a single URL. The use of public key cryptography ensures that a compromise of a protected Web server has no impact on the security of other participating servers.
cgi
The central cgi is responsible for logging users into and out of the central cosign server. It is also responsible for registering each service a user logs into - this action ties the users central login cookie to their session on individual application servers such as our web mail client, web directory client, or CourseTools environment. The prototype CGI was built to use Kerberos V/GSSAPI to authenticate the user.
daemon
The central daemon is responsible for maintaining the state of all cosign sessions. This includes keeping track of which users have logged in, logged out, and idle timed out. This also means the daemon keeps track of all of the service cookies that represent the authenticated web applications a user has accessed. The daemon has the ability to replicate its cookie database to multiply hosts, so a failure of one server does not constitute a failure of the system. The daemon answers queries of user identity from both the cgi and the filter, and talks to other daemons through a replication protocol. The daemon was written in C and has knowledge of Kerberos V tickets.
filter
The filter resides on an application server, and is not part of the centralized cosign infrastructure. The filter is responsible for determining which areas of a web site are protected by cosign and which are not. If a user attempts to access a protected area, the filter assures the user is authenticated, and obtains their username, authentication realm, IP address, and optionally a Kerberos ticket. This information can then be used by other authorization mechanisms to make further access decisions. The prototype filter was written in C for Apache 1.3.x.
Enhancements:
- daemon: updated return codes
- daemon: fixed bug in retrieve access control
- daemon: fixed bug where HUP with replication turned on would cause the server to die and exit.
- man: reorganized and fixed typos
Sessions have both idle and hard timeouts, and users can logout of all protected services by visiting a single URL. The use of public key cryptography ensures that a compromise of a protected Web server has no impact on the security of other participating servers.
cgi
The central cgi is responsible for logging users into and out of the central cosign server. It is also responsible for registering each service a user logs into - this action ties the users central login cookie to their session on individual application servers such as our web mail client, web directory client, or CourseTools environment. The prototype CGI was built to use Kerberos V/GSSAPI to authenticate the user.
daemon
The central daemon is responsible for maintaining the state of all cosign sessions. This includes keeping track of which users have logged in, logged out, and idle timed out. This also means the daemon keeps track of all of the service cookies that represent the authenticated web applications a user has accessed. The daemon has the ability to replicate its cookie database to multiply hosts, so a failure of one server does not constitute a failure of the system. The daemon answers queries of user identity from both the cgi and the filter, and talks to other daemons through a replication protocol. The daemon was written in C and has knowledge of Kerberos V tickets.
filter
The filter resides on an application server, and is not part of the centralized cosign infrastructure. The filter is responsible for determining which areas of a web site are protected by cosign and which are not. If a user attempts to access a protected area, the filter assures the user is authenticated, and obtains their username, authentication realm, IP address, and optionally a Kerberos ticket. This information can then be used by other authorization mechanisms to make further access decisions. The prototype filter was written in C for Apache 1.3.x.
Enhancements:
- daemon: updated return codes
- daemon: fixed bug in retrieve access control
- daemon: fixed bug where HUP with replication turned on would cause the server to die and exit.
- man: reorganized and fixed typos
cosign 1.9.3 Screenshot
cosign 1.9.3 Keywords
system that allows
to authenticate
Web Resources
SIngle Sign
per session
Allows Users
cosign
web
users
protected
access
single
cosign 1.9.3
Security
Miscellaneous
Bookmark cosign 1.9.3
cosign 1.9.3 Copyright
WareSeeker periodically updates pricing and software information of cosign 1.9.3 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of cosign 1.9.3 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
users have posted
cosigning for a loan
protected vehicles
cosine
protected wma
yahoo users
protected classes
users from around
userscripts
protected music converter
cosigner
single sign on solutions
users beta
protected area management
burn protected dvd
discuss this title with other users
access indiana
cosigning
Version History
Related Software
mod_shib is a shibboleth single sign-on module. Free Download
Crowd project is a web-based single sign-on (SSO) tool that simplifies application provisioning and identity management. Free Download
DACS, the Distributed Access Control System, is a flexible role-based access control system. Free Download
CkFormLogin is a plug-in for the Nagios network monitoring system that makes it more useful in the context of secured Web sites. Free Download
This project currently provides a set of modules that enable the use of smartcard based authentication. Free Download
Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Free Download
OpenGTS is a full-featured GPS tracking system that includes the OpenDMTP server. Free Download
Cone is a text-based email client. Free Download
Latest Software
Popular Software
Favourite Software
