How to implement secure timestamp

Similar Messages

• Webinar: How to implement secure scenarios with SAP NW PI 7.1

  SAP Intelligence Platform & NetWeaver RIG APJ Expert Call
  Dear valued SAP Experts,
  Next SAP Intelligence Platform & NetWeaver RIG Expert Call Session will take place on Tuesday, August 18.
  The SAP Intelligence Platform & NetWeaver RIG Expert Call Sessions are designed to support consultants, partners and customers  during their implementation projects. The sessions cover all different aspects of SAP NetWeaver and are aimed at
  thus provide knowledge which is not available via standard training courses. The session duration is typically 60min and includes questions and answers.
  Tuesday, August 18, 2009:
  How to implement secure scenarios with SAP NetWeaver Process Integration 7.1
  Time: 2.00 - 3.00 p.m. Singapore Time (UTC +8)
  This event will feature Makoto Sugishita with the SAP Intelligence Platform & NetWeaver Regional Implementation Group.
  Makoto provides the following abstract:
  In this session you will learn more about the core security concepts that are provided with the service-oriented architecture (SOA)
  management capabilities in SAP NetWeaver Process Integration (SAP NetWeaver PI). This session will cover main use cases and
  supported scenarios of secure SAP NetWeaver PI deployments. 
  SAP Connect Link: https://sap.emea.pgiconnect.com/I016095
  (no passcode needed)
  Dial in:
  For dial in details please register here http://www.surveymonkey.com/s.aspx?sm=EFeuZl9PxrwKOW5i5W556g_3d_3d
  Kind regards,
  Sarma Sishta
  SAP Intelligence Platform & NetWeaver RIG APJ

  hi,
  I'm making this a sticky thread till August 18 so it will have better visibility
  Regards,
  Michal Krawczyk

• How to implement secure help in SharePoint 2010?

  Hi,
  We are having a sharepoint site running over HTTPS. When I click on help link given on top right side, I get a security warning saying that only secure content content can be displayed. This is probably due to the non secure content(http) used by microsoft
  help.
  Can anyone please suggest how to implement microsoft help having secure content?
  Please see screenshot below:

  Yes office.microsoft.com URL works when I use https:// instead of http:// .
  Can you please let me know in which file this help function is used?
  Please provide me with an example if possible.

• How to implement Security Domains with Delegated Management

  Hello,
  I have read the GlobalPlatform docs and 'scoured' the Internet for some useful advice on how to implement DM with Java Card.
  The GlobalPlatform docs say that "The interface between a SD and the Card Manager is not defined by Open Platform" and that "It is assumed that a SD cannot be developed in the same manner as a normal app". How then is someone supposed to be able to implement a system that includes Java Card applets and post-issuance uploading of applets using DM?
  I have purchased the Aspects Developer IDE with DM supported Java Card smart cards but am at a loss of how to actually implement the SD applets with DM....I know this technology is not supposed to be easy , but it should be possible to research and find the information that is required to learn it.
  Can anyone point me in the direction of somewhere that will provide me with some direction?
  Thanks in advance,
  Ann

  Hi Kavitha,
  check this link http://andrejusb.blogspot.in/2011/04/housekeeping-for-adf-security-test-all.html
  http://www.orastudy.com/oradoc/selfstu/fusion/web.1111/b31974/adding_security.htm
  Edited by: MaDi on Jun 11, 2012 3:46 PM

• How to implement secure Licencing for Java Apps?

  Hi
  I'm already thinking some months about this topic. I serached the web, some books and magazines, i asked quite a lot of people - but in the end, there seems to be no really satisfying answer.
  My main question is: what can i do to protect the software i wrote? The problem is, where ever i start, i end with open questions.....
  I may start delivering a custom licence key with my software that contains information i.e. about who may run it and for how long. To check integrity i sign the licences key (with a digest) and ckeck the integrity in the application. Like this, i could make sure, that the software runs only with a valid licence.
  But two new problem araise - if the licence key is given to the web, everyone will be able to run the software. Second, i have to implement a methode to check the digest, so i have to deliver the key with the software and like this, the key could just be used to generate new licence files. Third, i hav to protect my code, since anyone could recompile it, he could check the algorithms i use to check the digest and even worse, he just could disable the codeblock that checks the licence.
  So i use an obfuscator to scramble my code, and to get the most out of this technique, i use a controlflow obfuscator. This adds some security, but still the code can be decompiled but wouldn't be too easy to understand. For making it even a little bit harder to read, i will "distribute" the licence digest check over some different classes.
  But still the first two problems remain. So i think about encrypting the licence file. To make that secure, i would use a public/private key encryption since if i use a secret key encryption i would have to deliver the key with the software and anyone could use it to generate new encrypted licene files. The problem with the public/private key is, that i should deliver a public key with the software that is only capable of decrypting, but not of encrypting. Like this, i can implement a decryption methode in the software that can decrypt the licence file and read all requiered licence data but the user is not able to generate a new licence file because he has the read-only key. Obvisouly there is no such private/public key technique that allows one key to be decrypt only and the other to be encrypt and decrypt (or at least encrypt only). Algorithms like PGP have a public key that allows encryption only and a private key that allows decryption only.
  I could go on presenting some more ideas i found to "protect" software/licence but the all come to the same point where they leave a lot of other open questions.
  I wonder what you all out there do to protect your software, what kind of technique you use for licencing implementation. I would be very glad to read what problem you face reagarding this topics and maybe how you solved it or what your conclusion was.
  Greetings
  josh

  >
  yes, absolutely. That's the point. Try to make it hard
  to get the software some other way. So it's easer to
  get the software by buying it.
  Nope.
  - There are those who steal it just to steal it. They don't use it.
  - There are those who steal it because the price is too extreme. If your income for the year is measured as only several thousand dollars you are not going to be able to buy a package that costs a thousand dollars or more.
  - There are those who steal it because the preceived benifit is less than the cost. For instance, at least in the past, MS software cost at least three times as much in some european companies compared to the exchange rate.
  - Finally there are those who steal simply because they don't want to pay for it.
  As far as I am concerned the last category is the only relevant one. And that is far smaller than any software theft estimates that the software industry regularly claims.
  >
  >>
  Here is an example of someone who thinks that their
  work is good enough and valuable enough to stand on
  its own...http://www.fileviewer.com/.
  And I liked it enough that at one company I hadthem
  purchase a site license. And I like it enough thatI
  still remember the company five years after thelast
  time I needed the product.that's fine and it would be very nice if everybody
  would be like you. But that's not the case and you
  even may not be sure if not someone in that company
  took a copy of the software and the licence and now is
  using it for free are even gave it in the "public
  domain". Woulnd't that be sad if the company would
  have to close down someday because just a few people
  are paying for it. Even if it is such a smart
  product?There was a clothing chain that closed down because they claimed that, even after installing anti-theft devices, they were still losing too much money from shop lifters.
  If that is the case why do all of the other companies still exist?
  If your product is good then people will buy it. The successes for that are abundant. The only success stories for copy protection schemes are for the copies that sell those schemes.
  >
  i wonder if you close your door when you leava your
  appartment. I mean, what's wrong with protecting a
  code? It's just the same as protecting the money you
  earn, the furnish in your appartment, ...
  Sorry, when I buy a product then I expect to be able to use it.
  With your analogy I would have to use a code that you provided everytime I wanted to get into and out of my apartment.
  So for any comments, ideas, ... on how to addsome
  more protection i'm very thankfull.You search for "obfuscator".yes, as i wrote in the first posting, i know about
  obfuscator, i'm using it, but it's just very poor
  protection. That's why I'm looking for a smart concept
  to gain a little bit more protection.And if you search for that term in these forums, and read the lengthy posts, you might find some ideas. Which is why I suggested it. (And you might understand why the alternatives are not used.)

• How to implement row level security using external tables

  Hi All Gurus/ Masters,
  I want to implement row level security using external tables, as I'm not sure how to implement that. and I'm aware of using it by RPD level authentication.
  I can use a filter condition in my user level so that he can access his data only.
  But when i have 4 tables in external tables
  users
  groups
  usergroups
  webgrups
  Then in which table I need to give the filter conditions..
  Pl let me know this ...

  You pull the Group into a repository variable using a session variable init block, then reference that variable in the data filters either in the LTS directly or in the security management as Filters. You reference it with the syntax VALUEOF("NQ_SESSION.Variable Name")
  Hope this helps

• How to implement data level security

  How to implement data level security in BI Publihser?. I am using Obiee enterprise edition and bi publihser. My requirement is to show data based on User- Region relation ship.
  User A - belongs to Eastern Region
  User B - belongs to Southern Region
  so if user A logged in he should see only Eastern Region report. If user B logged in He should see only Southern region. I am using direct sql to my oralce database as data source.
  i appriciate your help

  I am using a common database username and password for jdbc connection. what i am looking is based the BI Publihser login, is there any way?
  say i have userregion table joined with fact. so that i can write a query to get the data
  select c1,c2,c3
  from userregion, fact
  where fact.region=userregion.region
  and userregion.user = BIPUBLIHSERUSER
  but my question is ithere any variable to tell who is logged in BI Publisher? Any server varaibles?
  Other related question is, In every report i want to show User name who is running the report. How can i get this?

• How to implement the security notes in Java System.

  Hi All,
  For the ABAP systems we use RSECNOTE to implement the security notes, but how do we do that in Java systems?
  Any reference or guidance will be of great help.
  Thanks,
  Akash.

  RSECNOTE is for ABAP only, and I dont think there is any equivalent for Java.
  For Java , security note will guide you on how to implement.
  It could be manual changes or via SDM or JSPM.
  Regards,
  Pinkle

• How to implement redundant with 1 CE router to 2 MPLS service providers

  Dear all,
  Our head-office are currently have 1 Cisco CPE 3825 router with 2 WAN connections to our branches. We are now using static routing protocol in our network infrastructure, we consider how to implement the redundancy for networks by the redundant circuits connection to 2 MPLS providers, only when the primary connection to the primary MPLS L3 provider fail, the backup link to the second MPLS Layer 2 provider automatically active. Anybody knows where can I find information, tips or examples, how we'd handle the routing for that?
  We are now have:
  1 G0/1 interface connect to primary MPLS L3 Provider (the 2nd G0/2 interface is a leased-line connection to our partner, and we not consider here)
  1 HWIC (layer 2) card, with 4 ports, which has interface F0/2/3 connected to the backup MPLS Layer 2 provider.
  Thanks in advance.
  PS: Current configuration : 3727 bytes
  version 12.3
  service timestamps debug datetime msec
  service timestamps log datetime msec
  service password-encryption
  hostname Router
  boot-start-marker
  boot system flash c3825-entservicesk9-mz.123-11.T7.bin
  boot-end-marker
  logging buffered 4096 debugging
  logging monitor xml
  no aaa new-model
  ip subnet-zero
  ip cef
  no ftp-server write-enable
  no spanning-tree vlan 4
  no spanning-tree vlan 5
  interface GigabitEthernet0/1
  description connect to VDC MPLS$ETH-WAN$
  mtu 1480
  ip address 222.x.x.66 255.255.255.252
  ip flow ingress
  ip flow egress
  service-policy output SDM-QoS-Policy-1
  ip route-cache flow
  duplex auto
  speed auto
  media-type rj45
  fair-queue 64 256 256
  no cdp enable
  interface FastEthernet0/2/0
  switchport access vlan 2
  no cdp enable
  interface FastEthernet0/2/3
  description ToTBToverFPT
  switchport access vlan 5
  no cdp enable
  interface Vlan2
  description CONNECT TO MPLS_VDC
  ip address 192.168.201.9 255.255.248.0
  interface Vlan5
  description Connect to HoChiMinhCity
  ip address 172.16.1.5 255.255.255.252
  ip classless
  ip route 0.0.0.0 0.0.0.0 Dialer1
  ip route 172.16.244.0 255.255.255.0 222.255.33.65
  ip route 192.168.0.0 255.255.248.0 222.255.33.65
  ip route 192.168.24.0 255.255.254.0 222.255.33.65
  ip route 192.168.30.0 255.255.254.0 222.255.33.65
  ip route 192.168.32.0 255.255.254.0 222.255.33.65
  ip route 222.x.x.68 255.255.255.252 222.255.33.65
  ip route 222.255.33.72 255.255.255.252 222.255.33.65
  ip route 222.x.x.196 255.255.255.252 222.255.33.65
  ip route 222.x.x.200 255.255.255.252 222.255.33.65
  ip http server
  ip http authentication local
  no ip http secure-server
  ip http max-connections 3
  control-plane
  line con 0
  logging synchronous
  stopbits 1
  line aux 0
  stopbits 1
  line vty 0 4
  password
  login
  transport input telnet
  line vty 5 14
  privilege level 15
  password
  login
  transport input telnet
  line vty 15
  privilege level 15
  password
  login
  transport input telnet
  parser view SDM_Monitor
  scheduler allocate 20000 1000
  end

  Hi Mr jianqu,
  Because of our customer now has 2 main central offices, and all other sub branches are now connected to each of these main central office via one primary full-meshed MPLS VPN of 1st Service Provider, so If I use the float static routes, and when there is a failure at one link at a CENTRAL CE Router to primary link to primary MPLS VPN Service Provider, but still there is no failure at the other site from a router CE sub branch with the the PE of the primary full-meshed MPLS VPN Layer 3 Service Provider,so It cannot cause a failover to a second redundant link of the 2nd Service Provider?
  So with our system, do we only have one solution like this:
  -Configure BGP as the routing protocol between the CE and the PE routers.
  -Use local preference and Multi Exit Discriminator (MED) when running BGP inside a our customer VPN to select the primary and backup links.
  -Use AS-override feature to support overlapping AS numbers between customer sites

• How to share security context between different application ?

  Hi all,
  I have two applications(ADF faces + BC, JDev 10.1.3.1) deployed into OAS 10.1.3.1.
  The two applications are :
  1) SalesApp -> main menu page = SalesMenu.jspx
  2) ReportApp -> main menu page = ReportMenu.jspx
  I want implement security using CustomLogin.
  The question is :
  How can I share security context between the applications ?
  What I mean is, from SalesMenu.jspx there is one menu item to jump into ReportMenu.jspx, and I want user no need to Login again, Login is once and the user is recognized in the two apps. How to achieve that ?
  Thank you for your help,
  xtanto

  Xtanto,
  actually you can't if these are separate J2EE application deployments. The session is not shared and thus the authentication is lost. I heard that OracleAs is planning to implement a feature that allows you to share the session and thus a context between two J2EE deployments. I am not 100 % sure this is the case and will check with OC4J Product Management
  Frank

• How to implement a single sign on  feature using java.

  Hi,
  I have a question like , How to implement **single sign on** feature in java without using any third party framework or tool like LDAP or any other which is available in the market.
  Actually the situation is i have all security information into the table and those information is used for single sign on . If a user logged in from a jsp loging page all the security role should be assigned to that particular user.
  We can do this using LDAP but i am not supposed to use the LDAP or any third party tool . I have to write a java class for that .
  please suggest me the method , how to implement this in a web application.
  Edited by: Rakesh_Singh on Mar 19, 2008 11:55 AM

  you could setup a token that specifies a user is authenticated. other applications that u want SSO can check for existance of this token
  if it is HTTP - you can save the token as a cookie and downstream apps look for this token
  yr code needs to validate that the token/cookie was indeed a valid one and not subject to man-in-the middle attack.

• How to have Secure Connection for File Adapter.Pls help

  Hi All,
  For File to File Scenario
  How to have Secure Connection for File Adapter.
  Pls send links/blogs explaining this scenario.
  Regards

  hi rich
  go through these links
  FTPs connection failed - error ".. certificate rejected by ChainVerifier"
  Re: What is SFTP, FTI channels
  http://help.sap.com/saphelp_erp2005/helpdata/en/e3/94007075cae04f930cc4c034e411e1/frameset.htm
  http://help.sap.com/saphelp_erp2005/helpdata/en/bc/bb79d6061007419a081e58cbeaaf28/frameset.htm
  FTPS implementation question.
  http://help.sap.com/saphelp_nw04s/helpdata/en/43/0e16bfd7b021aee10000000a1553f6/frameset.htm
  Server certificate rejected by ChainVerifier:FTPS server(Points Guaranteed)
  /people/krishna.moorthyp/blog/2007/07/31/sftp-vs-ftps-in-sap-pi
  File adapter
  thanks
  Kunaal

• Implementing security for a custom Java Webdynpro

  We have a webdynpro that was developed and forces a user to log in w/their UME credentials.  I've been trying to find out where/how to implement specific security to the app (as in, which roles/groups can access it).  In the security provider of the admin tool, i don't even see the app listed under the components, if that's even the right place to look.
  Basically we want to create a UME role (which we've done) to assign it to this app, and then we'll assign a user group to the role.  As of now, pretty much anyone with an account on this instance can access the app.

  Hi David,
  This is done using UME programmatic security. On the help portal there's a tutorial to explain how to go about doing it. Here's a link:
  http://help.sap.com/saphelp_nw2004s/helpdata/en/fa/a64d401be96913e10000000a1550b0/frameset.htm
  Once you setup the application, use the UME user admin to assign the application's actions to UME roles, which are then assigned to users.
  Regards,
  Yonko

• How to implement Self Registration in EP 7.0

  Hello All,
  I am working in Enterprise Portal 7.0.
  I wanted to customize self registraion page in my portal in SAP Netweaver 7.0.
  Please tell me how to implement self registration in Portal 7.0.
  Thankx.

  Hi,
  I am able to run that component, but its giving another error such as:
  Java iView Runtime
  Version : 7.00.200702010738
  An exception occured while processing your request.
  com.sapportals.portal.prt.dispatcher.DispatcherException: Could not find connection portla
  com.sapportals.portal.prt.dispatcher.DispatcherException: Could not find connection portla
       at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:528)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
       at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
       at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
       at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
       at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
       at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
       at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
       at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
  If this situation persists, please contact your system administrator. 
  Please let me know your comment about this Error.
  Thank you so much in Advance.
  Thanks,
  Pallavi

• How to Implement a Time Limit Feature in an Online Test Application ?

  I am creating an Online Test application. The time limit can be stored for a Test in the database.
  How to implement a time limit such that when the test is started (user clicks on the Start button to go to the fragment containing the Questions) the time left is shown and the test ends (goes to home page) when the timer reaches zero.
  Thanks

  Hi,
  timestamp is a date and thus cannot be used directly to determine seconds passed. So what you need to do is to build the difference between a saved time stamp and the current time.
  http://docs.oracle.com/javase/1.4.2/docs/api/java/sql/Timestamp.html
  So if you have two time stamps, then calling getTime() on each and building the difference gives you a value, which is millisecond. So to get this to an int value you divide it by 1000
  Frank