Figure 2-3 is a block diagram
labeled Oracle Security Architecture. It contains, as a first row, a long
rectangle with four boxes inside it, above two shorter rectangles, which
form a second row.
<p>
In the first row's long rectangle are four boxes labeled as follows:
<p>
-
JAAS Roles, component access controls, Java2 permissions, all handled by
Oracle iAS
-
Enterprise roles, VPD, Label Security, all handled by Oracle RDBMS
-
E-biz responsibilities, all handled by Oracle E-Business Suite
-
File privileges, secure mail, interpersonal rights granting, all handled
by Oracle Collaboration Suite
<p>
In the second row are a long rectangle on the left, labeled Oracle
Identity Management Infrastructure, containing six labeled boxes, and a
shorter rectangle on the right, containing two labeled boxes.
<p>
The six boxes constituting the Oracle Identity Management Infrastructure
are labeled as follows:
<p>
-
Delegated Administration Services
-
Oracle Certificate Authority
-
Provisioning Service
-
Oracle Internet Directory
-
Oracle9iAS SSO (Single Sign-on)
-
Directory Integration Services
<p>
Oracle9iAS SSO (Single Sign-on) and Directory Integration Services
are connected to the other box in the second row, on the right side.
<p>
Oracle9iAS SSO (Single Sign-on) is connected by a double-headed
arrow to the top box inside that second row box. That top box is labeled
"3rd Party Authentication Service."
<p>
Directory Integration Services is connected by a double-headed arrow
to the bottom box inside that second row box. That bottom box is labeled
"3rd Party Directory Service."