Saturday, March 30, 2019
The Importance Of Security In Distributed Systems Information Technology Essay
The Importance Of protective cover In Distributed bodys Information Technology EssayThe total number of data processor carcasss installed within any organization has been increasing at a phenomenal rate. The sex act ease of installing and utilizing ready reckoner applications is a compelling reason for get togethering computer agreements together and distributing or sharing the work. These distributed formations allow you to take better value of the vast array of impact power now available.Distributed computing in all likelihood means many contrasting things to many varied people. To some, it means leaf node or server, it is cooperative processing and to still other, its using a distributed database. hike explanations and descriptions whitethorn be required to hold in that everyone has a common situation and under acheing of a distributed computing frame. When referencing a distributed computing formation, every substance ab drug engagementr should be able to s ee the same thing. A distributed computing dust is composed of system of rules elements which atomic number 18 then distributed across disaccordent processing platforms connected by a network.In this paper, aim 10.0 fragment. Each of the vocalisationition leave aloneing list. office 2.0 is about Distributed dust. Section 3.0 is about Threat of distributed System. Distributed System Security will describe in Section 4.0. The next Section 5.0 is about Distributed System Security appliance. Distributed System Security Architecture will describe on Section 6.0.We buns know about Distributed System Requirements in Section 7.0. In Section 8.0, we lowlife know Factors bear on Distributed System Security. Contribution in the credentials, we jackpot see on Section 9.0 and finally Section 10 concludes this paper.Distributed SystemToday, computers argon not stand alone units. Several computers atomic number 18 being networked together to form greathearted computer systems . Not only argon computers being network, but they atomic number 18 being networked into large distributed systems where each individual computer, node if you will, can patch up use of the applications distributed throughout the system (Dobry Schanken, 1994).Study on the formal precondition of authorization has become a major challenge in the genuine development of secure computing and IT systems (Yun, 2008).Figure 1. Authorization (Access control) in a distributed environment.Consider a distributed environment as shown in Figure 1, in which different users can access various resources through the network (Internet). in that respectfore, from the definition above, it indicates how an organization can benefit from using the distributed system as shown on a lower floorResource sharingIt is possible to use different types of hardw are, software or data wherever in the system hence reduce uncalled-for costs related with the tools. Also it supports resource sharing model that descr ibes the government agency resources are provided, the way they are used as well as the way provider and users interact amid each other. There are more benefits much(prenominal) as through search engines and computer found working were different information can be shared in inexpensive and easy way.ConcurrencySeveral processes can take place at the same time while components access as well as update any of the shared resources including databases. The important thing is that concurrent updates mustiness be coordinated in articulate to maintain integrity of the system. receptivityIt allows detailed interfaces of components to be published and supports the integration of new components with existing once.ScalabilityThe system is capable of accommodating changes in case of increase number in of users and resources it should be able to respond faster. This can be through with(p) by adding a number of processors with high speed to the system. Therefore the computer architecture and murder must be flexible enough to allow it.Fault leewayDistributed systems are capable of run correctly even if at that place mayhap some defects within the system (internal errors) for the purpose of increasing system reliability within an organization o a business.3.0 Threat of Distributed SystemsThere are different threats when distributed system is concerned, as any networked computer system can face it. It is important to implement countermeasures for all expected threats for the purpose of the system to remain constant and cost effective. Those threats can be distinguished depending on their inter exploit as follows belowDenial of serviceInvolves attacks that affect the availableness of information from the system to the user resulting to paralysation of the entire operation of an organization or part of activities depending on the attack. The use of resource control mechanism can champion in solving the above problem by applying time responses, sizing responses, and connection control. Also problem detection by time latency in system can easily be done if there is a dramatic increase of latency then defense reaction of service (DoS) can be detected as well as addressed.Information leakageIs one of the threats of computer system specifically distributed systems where unsanded information can easily be revealed to unauthorized users that results to lack of confidentiality. wildcat accessThis can occur due to the reason that the physiologic contour is not strong enough to protect such threats from accessing the system (distributed system). This is cognize as inter process intercourse threats. There is a train to for an organization that is willing to implement access control system to solemnize in mind three things which are models, access control policies as well as mechanisms (Krause Tipton, 1998). Access control policies will enable organizations to be able to specify different ways that will lead to becoming management of access t o resources as well as information which are the valuable assets of an organization.Distributed System SecurityThe objective of any shelter system is the ability to forestall a hush-hush. This is as true automated systems as much as it is for people. It is as important to keep the information secret when it is stored as well as when it sent over a network. A secure system is the one that can be trusted to keep secret, and important word is trusted. arrogances can be defined as a confident reliance on the integrity, honesty or justice of some other. Trust refers to the ability of the application to perform actions with integrity and to perform its functions on a continuing basis.However, individuals, governments and institutions such as banks, hospitals and other commercial enterprise will only consign their secrets to a computer system if they can be absolutely certain of confidentiality (Randell Rushby, 2007).The security architecture incorporates elements to safeguard the co nfidentiality of information and ensure that all access to the computing resources is authorized and authenticated. Defined security architecture can be used to ensure the design of applications and systems will bump into the required security objectives. The architecture will help guide decisions between systems and across platforms and ensure all of the systems meet a standard stripped level of security.Nevertheless, the security still has some problem. For example, the problems of maintaining security are deepen because the sharing of secrets is generally desired but only in a tightly controlled manner. In case, an individual can choose other individuals or groups with whom he wishes to share his private information (Randell Rushby, 2007). This sharing is called discretionary security because it is permitted at the discretion of the individual. The trusted portion of a secure system is normally identified with a small operating system nuclear. The progress to is a security k ernel. It is the rest of the operating system and all applications and user programs belong to the un-trusted element. However, certain difficulties attend the use of such kernelized systems.In the part of the structure of all secure systems constructed or designed recently has been influenced by the concept of a reference admonisher (Randell Rushby, 2007). A reference monitor is a small, inaccessible, reliable mechanism that controls the behavior of un-trusted system elements by mediating their references to such external entities as data and other un-trusted elements. Each access is check over against a record of the accesses that the security policy authorizes for that element.Distributed System SecurityMechanismCryptographyThe security of information transmitted from one node to another is questionable, therefore there is a need of using a neat method of transforming it into unreadable formats (secrets writing) through cryptography. The use of a single recognize or public k ey cryptographic algorithm which is suitable for defend message content by hiding information carried by a packet during the transmission process. This can be accomplished using RSA or AES algorithms.Authentication protocolProvides a series of communication procedures between users of the system and the server for the purpose of securing the communication process.Access control mechanismThis can be done using access control careens (ACL) that consists of a list related to an object that states all the subjects that can be allowed to access the object, as well as the rights to the object. ACL normally are implemented directly or as an approximation in recent Operating systemsDistributed System Security ArchitectureThe OSI Open system interconnection Reference model is practically used to depict largely of distributed system architecture for it has the ability to describe various levels of service essential to support distributed transactions. Autonomous computer systems and their processes pass along through the first four levels of OSI-RM.Middleware is considered as the bridge used to connect distributed applications across different physical locations, with different hardware platforms, network technologies, operating systems, as well as different programming languagesIn order to design, maintain and utilize the computational run offered by the distributed system, it is suitable to use abstraction of the distributed system physical architecture (Donnelly. 1979). The abstraction views the distributed system as a collection of processes that normally go throughs with each other in the process. Processes communicate by passing messages there if two processes communicate it means the communication is done over communication channels.7.0 Distributed System SecurityRequirementThere are many requirements of distributed system security that focus on the realm of IT security criteria. That is the development of protection pro loads. The protection profile is me ant to describe requirements that must be met to achieve varying levels of security. These requirements presented component, categorized or relating to assurance. For example, trusted retrieval is the components that refer to functions that respond to anticipated failures or discontinuity in operations (Dobry Schanken, 1994). following(a) a system failures the system must be able to gratify the Trusted Computing Base (TCB) secure states. Failure from which the system must be able to anticipate and securely recover include action that fail to complete because they detect exceptional conditions during their operations. The distributed system must be competent of recognizing failures in which of its components. This is because the overall TCB is a discontinuity in the protection provided by them. Another example is cryptography. The cryptography is a method of securing of information that has the components to implant the guidelines for using cryptography to secure the paths between nodes. Encryption and decryption executing of the system is the factor of the confidentiality and integrity of data communications .So, several different types of encryption may need to be used depending on the users environment.Although, there have several requirement of distributed system security such as trusted recovery, trusted path, security management and etc. They already have new concepts required to secure the connections between the various products that comprise the distributed system need to be included. A distributed system is one of the first implementations for be secure, must not only make use of traditional computer security concepts but have to utilize communication security concepts as well.Factors Affecting Distributed System SecurityThere is a need to analyze and identify the factors as well as issues related to trustworthiness of services provided by distributed systems apart from network topology and node paygrade. These factors includes distributed syste m physical security environment, interactions between different security mechanisms and distributed system management structure, are very important and relevant compared to network topology and node evaluation levels. Below is more information concerning the factors makeed above.Physical securityThere are some differences that occur in a distributed systems physical environment such as those that occurs due to the reason that the elements/components of a distributed system are placed in different location which is the result of changes overtime in its environment. jurisdiction authoritiesThe wide spread heterogeneity in the physical security environment is the result of the process of administering a distributed system by ten-fold jurisdiction authorities due to the types of mechanisms supported.Interaction between security mechanismsIn distributed system nodes are from different manufacturers, families of a single manufacturer, different versions which results into different sec urity mechanism. In case stand-alone system or distributed systems that may be using different discretionary access control mechanisms are interconnected for the purpose of forming a single distributed system then it brings riskiness (Anderson. 1985). The interactions between different policies implanted in trusted subjects running in different nodes bring dangers to the system.ContributionThe analysis presented in this paper was mention distributed system security that is a computer security architecture that provides a suite of functions including login, authentication, and access control in a distributed system to differ from other similar architectures. The distributed system security includes many applications that can help the system to protect to failure network. Therefore, this paper is suitable for individuals, governments and institutions such as banks, hospitals and other commercial enterprise that they would like to know the information of distributed system security.10 .0 ConclusionDistributed system security is fundamentally more complex than stand-alone system security. Current computer security concepts assume that trusts is assigned to a distributed system element on the basis of viewpoint. This security mechanism for distributed file systems solves many of the performance and security problems in existing systems today.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment