Abstract: Businesses are increasing their application infrastructure, where adopting and advancing the security layer is mandatory. In computing environment, security advancement is a mandatory requirement for any application infrastructure, where we are formulating a robust solution using open source packages. With our solution, we are using Open Source packs including open LDAP and ACL framework to extend the security concept, a step ahead to the middleware applications hosted in the data centre in an IT organization.
Our solution is to security advancement is based on the “Open Source Framework” and consume the benefits of “Open Source” packs to fulfill the security requirements.
Environment challenges – Big myth
Security Vulnerabilities:
The software infrastructure carrying out customer’s business critical data involves huge risk, by considering the level of security layer implementation. This would involve security loop holes such as hacking, data stolen by unknown and handling data in an inappropriate way .In such cases, it is mandatory for the organization to continuously improve the security layer.
Huge Investments:
To set up this advanced security layer, the organization needs to procure high value licensed software packs which would in turn increase the overall IT investments.
Lacking of in-house skill:
It is important to identify the vulnerabilities and react to the critical outages. At the same time it is very hard to build an in house skill portfolio because of unavailability of highly skilled resources. Hence
organizations are completely dependent on the security software vendors which in turn would cost more for their application infrastructure maintenance and support for their longer business operations.
Solution Proposal:
The Open Source community attracts very bright, very motivated developers, who although frequently unpaid, are often much disciplined. In addition, these developers are not part of corporate cultures where the best route to large salaries is to move into management; hence many open Source developers are amongst the most experienced in the industry. In addition all users of Open Source products have access to the source code and debugging tools, thereby we often suggest both bug fixes and enhancements as actual changes to the source code. Consequently the quality of software produced by the Open Source community sometimes exceeds the products produced by purely commercial organizations.
When several authors work in parallel, the best-of-crop solution can be chosen in place of the only solution (as would be typical for a commercial product), where source code is freely published and widely distributed. Users of the product will often discover and correct defects themselves. If no commercial entity benefits from that work, the motivation to do so for the common well is much higher.
Our Idea is to explore the benefits of Open Source Security Framework software products and integrate the Open Source Security benefits to implement the same / higher level of Software Infrastructure Security.
The Open Source Software Products mainly are categorized for,
1. LDAP – Light Weight Directory Access Protocol
2. ACL – Access Control Lists
For the above areas in Software Infrastructure Security, we have already many standard Open Source Production products readily available for usage.
We are considering mainly JAVA/Microsoft application workload for this open source security products integration Framework.
By adopting our Open Source Framework, we can earn all of the following organizational benefits such as Reliability, Stability, Audit ability, Cost, Flexibility and Freedom, Support and Accountability.
Summary:
The comprehensive approach provides the extensive features in security layer using open source products including open LDAP and ACL products. We are customizing the customer’s security according to how it depends and providing a robust solution for the business on a longer run. We are decoupling the dependencies of exiting security product vendors and gaining the advantage of available open source product features.
Profile:
Usha: Usha is working as an Assistant Professor from Department of Computer Science in National Engineering College
0 comments:
Post a Comment