Books for you

Public Key Infrastructure
(PKI) authentication, popular for securing Internet-based e-commerce
applications, uses X.509 v3 digital certificates and can leverage Entrust Profiles
stored in Oracle Wallets. Oracle Database 10g added authentication capabilities for
users who have Kerberos credentials, and enables Kerberos-based authentication
across database links.
In a typical scenario, the Oracle Enterprise Security Manager configures valid application
users to the LDAP-compliant OID server. An X.509 certificate authority creates
private key pairs and publishes them in Oracle wallets (through Oracle Wallet
Security | 149
Manager) to the LDAP directory. A user who wants to log in to a database server will
need a certificate and a private key, which can be retrieved from that user??™s password-
protected wallet, which resides in the LDAP directory. When the user??™s key on
the client device is sent to the database server, it is matched with the paired key
retrieved by the server via SSL from the LDAP directory and the user is authenticated
to use the database.


Pages:
313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337