X.500 Security Feature
X.500 Directory Service is a standard way to develop an electronic directory that people in an organization so that it can enhance into a global directory available to anyone in the world with Internet access. It is also a commonly used name that is used to joint ISO/IEC and ITUT-T standard that specify a distributed directory service, it automatically assumes an underlying OSI protocol stack.
Some of the core services of X.500 are Directory System Agent (DSA), it is a core directory server, a single DSA holds a part of the data in the total directory that is available. Directory User Agent (DUA) is the client process that accesses information in the directory that allow the users to be used as a user interface or embedded in another application. Directory Access protocol (DAP) is the protocol which a DUA uses to access one or more DSAs. Hence, this allows a client server model of X.500 directory. Directory System Protocol (DSP) is the protocol that DSAs used to talk to each other and it also carries the same operations as DAP along with some DSA control information. X.500 specifies powerful security features which allows strong authentication using access control to information on various levels which includes Administrative Area, public key cryptosystems, Attribute Value, Attribute and Entry. All aspects of organization security policy should be easily configurable on each and every of DSAs, users can either use through simple plain text editing of configuration files or a specialized tool.
References:
No comments:
Post a Comment