Posts

Showing posts from 2017

Worth of Bitcoins

Image
Bitcoins seems to be an interesting subject and is been taking the hype recently.

If we look at the value of a Bitcoin over the range of years, at 2015 it was worth $250 and now it is going beyond value of $2500 at the moment. This is capable of attracting more people towards it. We will proceed with more posts to understand Bitcoins, how to use it and any useful information for anyone interested in moving forward with Bitcoins, which I think is the currency of the future.

Following captured from coinbase.com on 8th June 2017 shows the value deviation of bitcoin from it's very start.



Source : https://www.coinbase.com

[WSO2 Article] Frictionless Adoption of Payment Services Directive 2 (PSD2) with WSO2

Image
Following webinar recording from WSO2 discusses in detail on the security implications of PSD2, the available technical standards around the recommendations and what WSO2 products are in-line to cater for those.


 Source : http://wso2.com/library/webinars/2017/04/frictionless-adoption-of-payment-services-directive-with-wso2/

The detailed article can be found at : http://wso2.com/library/articles/2017/05/frictionless-adoption-of-the-security-recommendations-for-the-payment-services-directive-2-psd2-with-wso2/

Adaption of PSD2

European Union has enforced Payment Service Directive version 2 (PSD2) for the Payment Service Providers to adapt by the year 2018. Following slide-deck discusses the

PSD2 background PSD2 effects on the business domain Security implications of the directive What technologies, standards are available to meet the requirements How WSO2 products can support to adapt PSD2

Frictionless Adaption of PSD2 with WSO2 from Pushpalanka Jayawardhana

The whole webinar based on the slides is can be found at [1].

[1] - http://wso2.com/library/webinars/2017/04/frictionless-adoption-of-payment-services-directive-with-wso2/

Checkout the Initial Summary for Directions in IML

Why Identity Mediation? And a Language ?

Image
As identified and predicted by several prominent analyst firms(Forrester, Gartner) , acquiring and merging has been the frequent mechanism for enterprises to expand in the recent past and the years to come. With this expansion there is a rising need for enterprises to handle the enterprise across identity and access management procedures in a secured way that is fast enough to have the competitive advantage of the merged or acquired assets. With different enterprises having variety of standards and protocols in use for identity and access management, catering for this requirement is absolutely challenging given the time factor. A similar situation has been addressed by Enterprise Service Bus(ESB) concept few years back, when the requirements raised to mediate between different transport protocols and data formats when communication is required between disparate enterprise systems that are legacy and modern.



We are trying to apply the same concepts around ESB in the arena of identity …

WSO2 Identity Server - Extension Points - Part 3 - XACML

This is the third of a series of posts on extension points available in WSO2 Identity Server, with relevance to separate protocols.
Previous posts can be found at, WSO2 Identity Server - Extension Points - Part 1 - SAMLWSO2 Identity Server - Extension Points - Part 2 - OAuth With the XACML architecture there are 4 main separate components as, PIP (Policy Information Point) - serves information required for policy evaluation.PAP (Policy Administration Point) - serves capabilities to govern the policies.PDP (Policy Decision Point) - make decision on incoming requests whether to permit or deny based on the defined policies and information collected from PIP.PEP (Policy Enforcement Point) - the interception point which checks and honors the policy decision.
WSO2 Identity Server can act as all these 4 components. In this post we will check on the extendability of these components and their usages. Policy Information Point(PIP) modules Usage:
When the information available locally is not eno…

WSO2 Identity Server - Extension Points - Part 2 - OAuth

OAuth2 is widely used in the enterprise today for authorization aspects of APIs. This is the second post on the extension points available in WSO2 Identity Server after WSO2 Identity Server - Extension Points - Part 1 - SAML

All the implementation using following extension point needs to be configured at <IS_HOME>/repository/conf/identity/identity.xml file under the element OAuth.
1. Custom OAuth grant handlerUsage: When we need to support an OAuth flow that is different from standard grant types. Validates the grant, scopes, and access delegation.
Sample:https://docs.wso2.com/display/IS510/Writing+a+Custom+OAuth+2.0+Grant+Type
Interface:org.wso2.carbon.identity.oauth2.token.handlers.grant.AuthorizationGrantHandler
2. Client Auth Handler
Usage: When the client credential authentication needs to be customized. By default we validate the client id and secret.
Interface: org.wso2.carbon.identity.oauth2.token.handlers.clientauth.ClientAuthenticationHandler
3. OAuthCallbackHandlerAn ex…