Archive for the ‘Security’ Category

Android – TLS/SSL Mutual Authentication

November 24th, 2011 by Marcus Krantz

Due to the explosion of smart phones on the market, the need for exposing existing enterprise systems through the mobile channel is growing rapidly. One of the first questions that will come up is how we can establish a secure communication channel with the existing enterprise system.
In this article, I will cover both how to [...]

Posted in Android, Java, Mobile, Security | 21 Comments »

Creating self-signed certificates for use on Android

November 24th, 2011 by Marcus Krantz

A while ago I started to implement TLS/SSL mutual authentication on Android. How to actually implement the functionality on the Android platform is covered in my other article “Android – TLS/SSL Mutual Authentication”. Before such implementation can be done, it is important to have the keys and certificates prepared. In this article demonstrate how you [...]

Posted in Android, Mobile, Security | 13 Comments »

(Swedish) Kan OAuth2 vara dörren till att öppna journalerna för marknaden?

November 13th, 2011 by Johan Eltes

(Sorry for writing this up in Swedish – the post is in the context of Swedish e-health. If this moves forwards I’ll wright the next post in english…hrmmm…well.. Swinglish)
Kim Nordlander (SLL) och Åke Rosander (Cehis) presenterade projektet Mina Hälsotjänster under nationella eHälsodagen här om veckan: http://www.nationellehalsa.se/program.html. Ett sätt att dela upp tjänster (i betydelsen IT-stöd) för [...]

Posted in Quality, RESTFul, SOA, Security, eHealth | 4 Comments »

Curl, Mutual Authentication and Web Services

April 4th, 2011 by Marcus Krantz

In a recent project, I was assigned to setup monitoring of a set of web services. The idea was to call the web services every 5th minute and check whether they operated normally or not, i.e a valid SOAP response was returned. The web services used SSL Mutual Authentication to authenticate the calling client. Since I [...]

Posted in Security, Tools, Uncategorized | No Comments »

Integrating e-id with WebSphere Portal

April 17th, 2008 by Sofia Jonsson

I’m currently working on a project where we, despite its many drawbacks, have decided to use the “BankId” solution to authenticate our users. But this is not the whole truth; since not all Swedish banks have agreed on using BankId we have to use three different solutions in order to cover (most) users: BankId, Nordea [...]

Posted in Architecture, Security | 7 Comments »