Software Index
Linux Software Security Tools  

cosign

download download home home   report broken
important software information
company name:
umich
license: Freeware
minimum requirements: No special requirements.
functional limitations:
cosign description


cosign is a Web single sign on system that allows users to authenticate once per session and access any protected Web resources at the institution. When you use cosign the passwords are sent only to a single, central URL.

Sessions have both idle and hard timeouts, and users can logout of all protected services by visiting a single URL. The use of public key cryptography ensures that a compromise of a protected Web server has no impact on the security of other participating servers.

cgi

The central cgi is responsible for logging users into and out of the central cosign server. It is also responsible for registering each service a user logs into - this action ties the user's central login cookie to their session on individual application servers such as our web mail client, web directory client, or CourseTools environment. The prototype CGI was built to use Kerberos V/GSSAPI to authenticate the user.

daemon

The central daemon is responsible for maintaining the state of all cosign sessions. This includes keeping track of which users have logged in, logged out, and idle timed out. This also means the daemon keeps track of all of the service cookies that represent the authenticated web applications a user has accessed. The daemon has the ability to replicate its cookie database to multiply hosts, so a failure of one server does not constitute a failure of the system. The daemon answers queries of user identity from both the cgi and the filter, and talks to other daemons through a replication protocol. The daemon was written in C and has knowledge of Kerberos V tickets.

filter

The filter resides on an application server, and is not part of the centralized cosign infrastructure. The filter is responsible for determining which areas of a web site are protected by cosign and which are not. If a user attempts to access a protected area, the filter assures the user is authenticated, and obtains their username, authentication realm, IP address, and optionally a Kerberos. University of Michigan. University of Michigan is one of the great public universities of the world, a diverse and comprehensive public institution of higher learning that supports excellence in research, provides outstanding undergraduate, graduate and professional education, and serves people and organizations in the community, region, state, nation and around the world through its many partnerships and collaborations.



Similar software
Classless.Hasher (Popularity: ) : Hasher is a tool to help programmers implement checksum algorithms and standard hashing into their own software.

Written entirely in C# and designed for use in the .NET Framework, Hasher providers a uniform interface to easily use any of the algorithms ...

CrossFTP Server (Popularity: ) : CrossFTP Server is a professional FTP Server for multiple platforms. It is a high-performance, extremely configurable, and most of all a secure FTP server. CrossFTP Server has an easy-to-use GUI for user to configure the server's behavior.. . Publisher of ...
User reviews

Write a review:
1 2 3 4 5 6 7 8 9 10
1=poor 10=excellent
Write review*
Your name*
Email*
  (Comments are moderated, and will not appear on this site until the editor has approved them)
 
AD


Rate me
supported os's
stats
downloads 170
version 1.9.3
size in Kb 317
popularity   
4872/1272475
user rating 5/10
our rating 0 Stars
share info
Recommend cosign
Report spyware
New Software
Popular Software
Latest Reviews