ADO.NET Entity Framework
May 10, 2010 by Manjunath HK · 2 Comments
Over the next few days (or may be weeks) am going to be doing a series of posts related to ADO.NET Entity Framework. I’ll also create a sample application to help ensure that you understand most, if not all, of the concepts.
What is ADO.NET Entity Framework?
ADO.NET Framework is an Object-Relationship Management (ORM) tool.
Why use ADO.NET Entity Framework?
The ADO.NET Entity Framework is designed to enable developers to create data access applications by programming against a conceptual application model instead of programming directly against a relational storage schema. The goal is to decrease the amount of code and maintenance required for data-oriented applications. Entity Framework applications provide the following benefits:
- Applications can work in terms of a more application-centric conceptual model, including types with inheritance, complex members, and relationships.
- Applications are freed from hard-coded dependencies on a particular data engine or storage schema.
- Mappings between the conceptual model and the storage-specific schema can change without changing the application code.
- Developers can work with a consistent application object model that can be mapped to various storage schemas, possibly implemented in different database management systems.
- Multiple conceptual models can be mapped to a single storage schema.
- Language-integrated query (LINQ) support provides compile-time syntax validation for queries against a conceptual model.
Pre-requisites for the sample application:
ADO.NET Entity Framework is included with .NET Framework 3.5 Service Pack 1 and Visual Studio Service Pack 1. Please ensure that you have installed Visual Studio 2008 Service Pack 1 in your system before proceeding with the examples provided in this post.
This framework is built-in default with Visual Studio 2010 and you don’t have to install anything extra.
Also, ensure that you have SQL Server 2005/2008 installed in your system.
SQL Server 2005/2008 Express Editions are free download from Microsoft. Any of these editions is suitable for the sample application we are going to create.
Digital Signature
February 8, 2010 by Manjunath HK · Leave a Comment
Sometime back, I used to think that digital signature was a scanned copy or an image (JPG) of my physical signature and embedding this image in a document would make the document digitally signed. Many of us may still do not understand Digital signature and this small write-up is intended to provide an introduction.
We are familiar with a contract on paper, signing which implies that both parties have read the contract and accepted the terms of the contract. Changes to the contract are not allowed unless they are countersigned. Is this possible on a soft copy? How do we ensure that the document is signed by the person who he / she claims to be and the document has not changed after it has been signed. This is made possible using Digital Signature.
Digital Signature employs asymmetric cryptography. Symmetric cryptography (encryption) is one where the encryption and decryption happens using the same key, where as in asymmetric cryptography a pair of keys are used. Data encrypted using any one key can only be decrypted using the other key in the pair.
Certifying Authority (CA) issues a Digital Certificate (a Public Key and Private key) to an applicant after his / her credentials are verified. The private key is known only to the individual who owns the certificate, while the public key is for public consumption. The certificate carries details such as the Name of the person, organization details, e-mail address and many other details. The certificate is also protected by a PIN for usage.
Asymmetric encryption is extremely complex and requires a huge computation power, hence this not suited for encrypting large documents. So instead, the document is hashed using a standard hashing algorithm such as SHA1. The hash changes for the smallest of change to the document. To sign a document, the Private Key encrypts this hash and adds this to the document, along with other details of the certificate, which forms the Digital Signature. The document is still in clear text, but a Digital Signature is embedded into it.
A receiver can verify the details of the person signing it, as the certificate details can be verified against the details stored in the CA. The verification process decrypts the encrypted hash (Digital Signature) stored within the document using the public key and next, it generates the hash of the document and compares the two. If hashes are identical, it can be concluded that the document has not changed after it was signed.
The diagram below provides a pictorial representation of the Digital Signature and verification process
Digital Certificate Architecture
A valid Digital Signature gives a recipient reason to believe that the message was created by a known sender, and that it was not altered in transit. Digital Signatures are commonly used for software distribution, financial transactions, and in other cases where it is important to detect forgery and tampering.
Cloud Computing
January 16, 2010 by Manjunath HK · Leave a Comment
What is cloud computing? Everyone in the technology world is talking about it.
Cloud Computing is an emerging computing technology that uses the internet and central remote servers to maintain data and applications. Cloud Computing allows consumers and businesses to use applications without installation and access their personal files at any computer with internet access. This technology allows for much more efficient computing by centralizing storage, memory, processing and bandwidth. Cloud Computing is broken down into three segments: “applications,” “platforms,” and “infrastructure.” The main advantage is the elasticity of the cloud and its ease of delivery.
In general, Cloud Computing customers do not own the physical infrastructure; instead, avoid capital expenditure by renting usage from a third-party provider. They consume resources as a service and pay only for resources that they use. Many Cloud Computing offerings employ the utility computing model, which is analogous to how traditional utility services (such as electricity) are consumed, whereas others bill on a subscription basis.
There’s a good chance you’ve already used some form of Cloud Computing. If you have an e-mail account with a Web-based e-mail service like Hotmail, Yahoo! Mail or Gmail, then you’ve had some experience with Cloud Computing. Instead of running an e-mail program on your computer, you log in to a Web e-mail account remotely. The software and storage for your account doesn’t exist on your computer — it’s on the service’s computer cloud. If you host an application that has seasonal peaks, then ramping up your servers to handle this short peak load may be difficult, A Cloud on the other hand lets you manage and increase or decrease the resources allocated to your application, within a very short period of time.
With Amazon’s EC2, Google’s AppEngine, and now Microsoft’s Azure, Cloud Computing looks more like a very real architecture that your data center has a good chance of being connected to in the near future.
Perhaps the biggest concerns about cloud computing are security and privacy. The idea of handing over important data to another company worries some people. Corporate executives might hesitate to take advantage of a Cloud Computing system because they can’t keep their company’s information under lock and key.