Posts

Showing posts from February, 2012

Cloud market is heating up....

Been using the Amazon cloud services for Kindle Fire for a couple of days. Now even though Amazon is number 1 when it comes to cloud computing in the market currently, it has to address issues concerning the uploading aspects into it's cloud platform immediately. It took me almost six and a half hours to upload four songs using the Amazon MP3 uploader located @ Amazon MP3. This might be due to the fact that Amazon is relying on selling more MP3 and other content which is heavily integrated with Amazon cloud rather than allow user's in uploading the very same. It is a good business strategy maybe from a short term aspect but from a long term understanding of a user's psyche, this will be an utter failure if it does not work something fast. Maybe SOPA might have restricted Amazon to a certain extent but it's MP3 uploader has been present for some time now and the SOPA has nothing to do with the software (or perhaps introduced purposely) chinks. Maybe a good space for it…

NTLM vs KERBEROS

Image
Let us understand how NTLM authentication works:





Step 1:
User sends a request to the server passing the domain authentication credentials.


Step 2:
Server creates an encryption token and sends a response back to the User (User's machine)


Step 3:
User gets the encrypted token and uses the token to encapsulate the user's password and re sends the new information back to the server.


Step 4:
Server gets the encrypted password, decrypts the information and sends the information to the Domain Account Controller/Service Account Manager for verification and authentication.


Step 5:

The Service account manager verifies the information and informs the server that the user is either authenticated or the authentication request has been denied.
Once these steps occur a connection with the server will either be established or disestablished. Key notes here is that the NTLM authentication does not require to have the server principle (SPN) established on the local machine for authentication. This is more…