Author: Umakant Mishra
Abstract:
The specifications of LDAP v.3 provide facilities for simple
authentication using a cleartext password as well as any SASL mechanism.SASL
allows for integrity and privacy services to be negotiated (RFC 2251,
www.ietf.org/rfc/rfc2251.txt).
Use of cleartext password is strongly discouraged where the
underlying transport service cannot guarantee confidentiality and may result in
disclosure of the password to unauthorized parties.
The protocol allows other security mechanisms like SASL to
be implemented in LDAP. The protocol also permits that the server can return
its credentials to the client, if it chooses to do so.
This article is a TRIZ based study on patents on Lightweight
Directory Access Protocol (LDAP) security. The objective of this article is to
find the major concerns in LDAP data security, find the IFR and trends of
evolution and predict the future inventions on LDAP data security.
Keywords: LDAP directory, Directory Protocol,
Inventions, Software Inventions, LDAP inventions, Software Patents, LDAP data
access, LDAP data storage, Data security, Data Protection, LDAP data security,
Umakant Mishra, Inventions on LDAP Security - A TRIZ Based
Analysis (August 2006). Available at SSRN: http://ssrn.com/abstract=925928 or http://dx.doi.org/10.2139/ssrn.925928
No comments:
Post a Comment