https://github.com/khajavi/javanotes

Java programming notes
https://github.com/khajavi/javanotes

Last synced: 3 months ago
JSON representation

Java programming notes

• Host: GitHub
• URL: https://github.com/khajavi/javanotes
• Owner: khajavi
• Created: 2015-10-09T13:30:15.000Z (over 9 years ago)
• Default Branch: master
• Last Pushed: 2015-10-15T11:34:01.000Z (over 9 years ago)
• Last Synced: 2025-01-08T11:12:50.744Z (5 months ago)
• Homepage:
• Size: 137 KB
• Stars: 0
• Watchers: 3
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# JavaNotes

## Security

1. Authentication: Who is the user?

2. Authorization: What user are authorized (allowed) to do?

3. confidentiality

4. Integrity

### Authentication

#### HTTP Authentication

##### 1. basic authentication

1. very weak: base64 encode of  usser:password transmited

2. no integrity

3. no confidentiality

4. server must maintain raw password (bad idea)

5. example:

    username: webmaster

    password: try2gueSS

    Authorization header: BASIC d2VibWFzdGVyOnRyeTJndWVTUw

##### 2. Digest authentication

1. digest: md5 of (username, password, URI, HTTP Method, randomly generated "nonce")

2. server must maintain raw password

## Interfaces

### Program to an interface

* [What does it mean to “program to an interface”?](http://stackoverflow.com/questions/383947/what-does-it-mean-to-program-to-an-interface)

* [“Program to an interface”. What does it mean?](http://stackoverflow.com/questions/1992384/program-to-an-interface-what-does-it-mean)