Skip to content
contact us | home | accessibility


Google Custom Search
good practice and innovation
about us infoKits Tools & Techniques Publications Events
You are here: Home » Resources » External Resources » Security

Based on an evaluation of the technologies used in the MLEs in HE Programme undertaken by Paul Browning.

It should be noted that all projects state that until SSL is implemented for Web access then the benefits of institution-wide LDAP authentication do not come without significant risks of plain text password interception.

DMU

Users log in with username and password, authenticated against an LDAP server. SSL is used for the connection to the Student Information System (QLS). Queries from the MLE system to the QLS are restricted by a "thin client" application. See QLS Broker Documentation

Writtle

The GIMIS security system is both granular (access and activity assignments granted on a role basis) and robust (every page request is checked prior to processing). SSL will be implemented nearer the end of the current project cycle.

St Andrews

A security issues and policy analysis with respect to the web: SSH, SSL, IpSec, Certificates etc.

LDAP (Lightweight Directory Access Protocol) exploiting the institution's ITS issued usernames and passwords;

Use of Matriculation Cards for authentication to online systems Role-based access controls on MMS.

UEA

Log-on via UEA user-ids and passwords (which are validated to exclude dictionary words etc.) held in LDAP server. Investigating using HTTPS for log-on.

Sunderland

Log-on via University of Sunderland user-ids and passwords held in LDAP server.

Ravensbourne

The TISR configuration file should be appropriately protected, as it contains database and LDAP connections strings. The TISR server should be physically secured from unauthorised access. Web access should be implemented over SSL, though isn't in demonstration application. We have developed a sample LDAP authentication module for use with Resin. This is unsupported code for demonstration purposes. It requires the Netscape/Mozilla Java LDAP SDK. As TISR is middleware, it is up to implementers to determine security policy. A TISR solution could provide a student directory, say, available to all, or a secured service with restrictions in place.
Bookmark and Share
Link to the JISC Website

© 2012 Northumbria University, on behalf of JISC Advance
JISC infoNet is a JISC Advance service
This website is powered by Plone | Cookies Statement

Creative Commons

 JISC Advance logo
If you can read this text, it means you are not experiencing the Plone design at its best. Plone makes heavy use of CSS, which means it is accessible to any internet browser, but the design needs a standards-compliant browser to look like we intended it. Just so you know ;)