http://trimpath.com/project/wiki/JavaScriptTemplates
(實作的時候發現在JSP裏竟然不work?
No no....
在控制字串前加個跳脫符號就行囉~ Ex: \${a.b})
2007年2月9日 星期五
2007年2月6日 星期二
好書推
本來瞧不太起它的封面(設計得有點大陸廉價書的味道),
一翻之下發現的確是好書
介紹在這裏
http://webnews.giga.net.tw/article//tw.bbs.soc.hsinchu/75904
這裏是試讀版
http://www.learntus.com.tw/download/expr_in_sw_dev--read_n_buy.pdf
作者分享實戰的經驗,十分寶貴
一翻之下發現的確是好書
介紹在這裏
http://webnews.giga.net.tw/article//tw.bbs.soc.hsinchu/75904
這裏是試讀版
http://www.learntus.com.tw/download/expr_in_sw_dev--read_n_buy.pdf
作者分享實戰的經驗,十分寶貴
2007年2月5日 星期一
Information Security Note
上學期資安課程的整理
略過加密演算法過於理論的部份,來看看一個資安系統在技術上可能牽涉的範疇有那些?
(1) Firewall: packing filtering, stateful inspection, application-level gateway, and circuit-gateway.
(2) Encryption, decryption and authentication based on IP Level: IPSec
(3) Encryption, decryption:(provides confidentaility)
symmetric cipher,such as DES, AES;
public key based cipher, such as RSA, eclipse.
(4) Message Authentication:(provides authentication)
MAC, hashcode.
(5) Digital Signature:(provides non-repudiation)
RSA+hashcode, DSA...
(6) Key Distribution Center.(KDC)
the architecture of distributing keys. The key distributed must be genuine.
期未報告是一個web based secure purchase system. 包含幾個模組
(1) key management
(2) digital signature
(3) encryption and decryption
Key points:
Symmetric cipher performs much better than public key based cipher!
Due to we cannot transmit private key over network, (2)&(3) is done by Applet.(only (1) is done by the web server component, because only public keys are managed by server.)
If we want to do mutual authentication, it probably can be done by the existing mechanism built in ap server. (ie. tomcat)
Implementation:
JCE
略過加密演算法過於理論的部份,來看看一個資安系統在技術上可能牽涉的範疇有那些?
(1) Firewall: packing filtering, stateful inspection, application-level gateway, and circuit-gateway.
(2) Encryption, decryption and authentication based on IP Level: IPSec
(3) Encryption, decryption:(provides confidentaility)
symmetric cipher,such as DES, AES;
public key based cipher, such as RSA, eclipse.
(4) Message Authentication:(provides authentication)
MAC, hashcode.
(5) Digital Signature:(provides non-repudiation)
RSA+hashcode, DSA...
(6) Key Distribution Center.(KDC)
the architecture of distributing keys. The key distributed must be genuine.
期未報告是一個web based secure purchase system. 包含幾個模組
(1) key management
(2) digital signature
(3) encryption and decryption
Key points:
Symmetric cipher performs much better than public key based cipher!
Due to we cannot transmit private key over network, (2)&(3) is done by Applet.(only (1) is done by the web server component, because only public keys are managed by server.)
If we want to do mutual authentication, it probably can be done by the existing mechanism built in ap server. (ie. tomcat)
Implementation:
JCE
訂閱:
文章 (Atom)