Authentication
Authentication - determining the identity of a user and/or display device
- Client system (e.g., PC) may do authentication, but the server usually does it too (doesn’t trust clients)
- Encrypt the wire to avoid wiretapping and spoofing (on the Web, use https = http over secure socket layer)
Geographical entitlement - check that a particular device is allowed access (e.g., security trading room)
Need system mgmt functions to create accounts, initialize passwords, bracket hours of access (simplify it using a role abstraction … more later)
Major activity in TP application development