svn commit: r613080 - /incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README

Thu, 17 Jan 2008 23:00:44 -0800 

Author: svkrish
Date: Thu Jan 17 23:00:22 2008
New Revision: 613080

URL: http://svn.apache.org/viewvc?rev=613080&view=rev
Log:
added some more information

Modified:
    
incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README

Modified: 
incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README
URL: 
http://svn.apache.org/viewvc/incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README?rev=613080&r1=613079&r2=613080&view=diff
==============================================================================
--- 
incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README
 (original)
+++ 
incubator/tuscany/branches/sca-java-1.1/demos/secure-bigbank/secure-bigbank-account/README
 Thu Jan 17 23:00:22 2008
@@ -20,7 +20,15 @@
         
 *) The StockQuote webservice is adorned with 'integrity' i.e. all 
communications between the bigbank and
 the StockQuote webservice and signed to ensure integrity of data exchanged. To 
honour this requirement the 
-StockQuote reference of the big-bank is also adorned with 'integrity' as a 
security requirement.    
+StockQuote reference of the big-bank is also adorned with 'integrity' as a 
security requirement. 
+
+The overall picture is that when the Customer is requesting account details 
from the bigbank, the bigbank seeks
+the services of the Savings, Checkings and Stock Account Components. In 
seeking the service of the Checkings 
+Account compoent the the big-bank compoent authenticates itself.  The 
Checkings Account component further checks
+if the athenticated user token passed by the bigbank is authorized to access 
the account in question.  This is one 
+lap where security has been enforced.  Another lap is when the bigbank 
component refers to the StockQuote webservice
+to compute the stock value for a customer.  Here all communications are signed 
to ensure integrity of data exchanged
+between the bigbank and StockQuote webservice.
 
 When you run this demo you will observe various console messages that reflect 
the enforcement of authentication
 and authorization and integrity at varoius points of this application.



---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to