Introducing the Central Authentication Service CAS - PowerPoint PPT Presentation

1 / 10
About This Presentation
Title:

Introducing the Central Authentication Service CAS

Description:

Used by thousands of students, mostly during the first two weeks of the academic ... Yale Herald. RIS file transfer services, MyOracle and others. Questions to answer ... – PowerPoint PPT presentation

Number of Views:95
Avg rating:3.0/5.0
Slides: 11
Provided by: shawnb1
Category:

less

Transcript and Presenter's Notes

Title: Introducing the Central Authentication Service CAS


1
Introducing theCentral Authentication Service
(CAS)
  • Shawn Bayern
  • Research programmer, ITS Technology Planning
  • Author, Web Development with JavaServer Pages
  • JSTL implementation lead (JCP, Apache)

2
Current CAS users
  • Network registration tool (Netreg)
  • Used by thousands of students, mostly during the
    first two weeks of the academic year
  • AMT applications
  • software distribution
  • Pantheon account tool
  • internal support applications
  • Workstation support services and machines
  • Undergraduate groups
  • YaleStation
  • Yale Herald
  • RIS file transfer services, MyOracle and others

3
Questions to answer
  • What does CAS do?
  • How does it work?
  • How can you use it?
  • Whats on the horizon?

4
Features and advantages
  • Web single sign-on
  • Convenience
  • Centralized authentication policy
  • Easier to maintain in enterprise
  • Gets users used to single site for logging in
  • Applications dont handle sensitive passwords

5
CAS in a nutshell
Authenticates via password (once)
Determines validity of users claimed authenticat
ion
Authenticates without sending password
Browser
Web application
6
What CAS looks like
  • Users can be asked to avoid supplying password
    except to trusted site.
  • Expected URL
  • Known look and feel
  • Authentic peer certificate (if anyone cares)

7
How CAS actually works
S
T
Web application
CAS
NetID
S
S
T
Web browser
C
8
How to use CAS in a web application
  • Replaces Kauth and similar mechanisms
  • Used as "gate" for application
  • Applications need to do two things
  • Redirect
  • Request/response with HTTPS URL
  • Therefore, CAS works with most platforms.
  • TP provides libraries for Java, JSP, Perl
  • ... and can assist with ASP, PHP, etc

9
Examples
  • JSP tag
  • Simply add the following to every JSP page
  • ltcasauth idnetid scopesession /gt
  • Java (e.g., Servlets)
  • public String validate(
  • String ticket, String service)
  • (Returns authenticated NetID)

10
CASs future
  • Broader adoption
  • CAS becomes standard ITS authentication mechanism
  • Load testing
  • CAS 2.0
  • Portals and proxies
  • New, requested features
  • Prevents brute-force password guessing
  • Lets applications avoid single sign-on
  • Ensures redundancy and availability
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Introducing the Central Authentication Service CAS" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!