Monday, 9 January 2012

X.500 Security Feature


X.500 is a commonly used name for a series of joint ISO/ITEC and ITU-T standards specifying a distributed directory service. It assumes the existence of an underlying OSI protocol stack. X.500 terminology includes DSA, DIT, DUA and some of the security features are asymmetric encryption and access controls and the usage of X.500 are used by other applications such as X.400 and EDI.


Some of the core services of X.500 are Directory System Agent (DSA), it is a core directory server. A single DSA can hold a part of the data that is available in the total directory. Directory User Agent (DUA) is the client process that accesses information in the directory that could be a user interface or embedded in another application. Directory Access Protocol (DAP) is the protocol which a DUA uses to access one or more DSAs. Thus, this allows client or server model of X.500 directory. Directory System Protocol (DSP) is the protocol that DSAs use to talk to each other and it carries the same operations as DAP along with some DSA control information. 


The X.500 specifies powerful security features which allow strong authentication using public key encryption and access control to information on various levels including Administrative Entry, Area, Attribute Value and Attribute. All aspects of organization’s security policy should be easily configurable through simple editing of plain text configuration files. 

Reference:

http://books.google.com.sg/books?id=kNhSa7iEVmYC&pg=PA53&lpg=PA53&dq=X.500+security+features&source=bl&ots=Q3NTeC2-D4&sig=HNU6aY3FC_wLam-0hkgTVZNIRKw&hl=en&sa=X&ei=E9gKT6alC4-urAfs0-XqDw&ved=0CFYQ6AEwBQ#v=onepage&q=X.500%20security%20features&f=false

http://www.isode.com/whitepapers/ic-6033.html


Posted by at

3 comments:

  1. Beeying10 January 2012 at 06:12

    Hello Hui Si,
    I have noticed that you have given a brief description on what is X.500, which lets the readers have an understanding of what it is about before reading the post on what the security features of X.500 are. You have listed some of the security features, but if you had describe more on each of the point it would be better as the main focus is on the security features. You can improve by adding some pictures as it will make your post more interesting, well-explained and detailed. Nevertheless, this is still an informative post on X.500 security features.

    ReplyDelete
  2. Sim Hong Yi10 January 2012 at 19:31

    Hello Hui Si! You have given the users a brief overview of what the X.500 standard is about and the purpose of it. Not bad. You have also stated a few security features and provided enough information pertaining to that particular security feature. However, I noticed that you have provided too little security features. This will not give the readers a clear view on how X.500 can be applied. There are a lot of features pertaining to X.500. I believe that if you were to list down several more features and gave them each a brief information, it will give the readers a clearer view on how these features work hand-in-hand together. In general, good work! :D

    ReplyDelete
  3. dexter12 January 2012 at 20:38

    you have given an overview on what is X.500, which allows your readers to have an better understanding of what is X.500.

    You have listed some of the security features, but there are some points you are still missing out. You can improve by adding some pictures or a video to allow your readers to have a better understanding of X.500. Nonetheless, this is still an informative post on X.500 security features.

    ReplyDelete

Subscribe to: Post Comments (Atom)