• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Part 2 - Security Features

 
Ranch Hand
Posts: 35
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi,

I am just stuck with Security part, would be thankful for your comments and answers for the below

1. Web Clients alone needs to be implemented with SSL, so can I assume that Application Client resides inside the firewall so it dosen't need SSL ?
This is also 1 way to give a faster response to the Travel Agent, Also SSL implementation mostly depends upon the Server, should we document this ?

2. To what extent Security needs to be depicited in Component Diagrams ?
I guess thats the only diagram in which we show Security

3. What type of Security needs to be provided for a Travel Agent ?

Senthil
 
Ranch Hand
Posts: 129
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Senthil,
I think it's too hard to assume application clients are located within firewall, yes, we can use VPN, but I think it quite slow.
 
Greenhorn
Posts: 22
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator


1. Web Clients alone needs to be implemented with SSL, so can I assume that Application Client resides inside the firewall so it dosen't need SSL ?
This is also 1 way to give a faster response to the Travel Agent, Also SSL implementation mostly depends upon the Server, should we document this ?

2. To what extent Security needs to be depicited in Component Diagrams ?
I guess thats the only diagram in which we show Security

3. What type of Security needs to be provided for a Travel Agent ?



1) You must use HTTPS

2) No security does not need to be shown at Compoment Diagram, just explain with words, is enough.

3) Every thing is HTTPS, there is no difference between customer and agent.
 
Senthil Rajendran
Ranch Hand
Posts: 35
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Any more suggestions ???
 
Consider Paul's rocket mass heater.
reply
    Bookmark Topic Watch Topic
  • New Topic