Roberto C. Mayer, profile picture
Uploaded byRoberto C. Mayer
242 views

Versa cloud slide-deck-03-security-aspects

This document summarizes the key aspects of VersaCloud's Transactions as a Service platform. It describes how VersaCloud securely manages cloud-based transactions across backend servers and various frontend devices. It outlines the use of unique identifiers, timestamps, and access controls to secure each transaction. It also provides examples of common transaction types like user registration, login, and method invocation. Finally, it summarizes VersaCloud's internal processing of transactions through four main steps: acceptance, validation, execution, and logging.

Embed presentation

Transactions as a Service Security AspectsSecurity Aspects
Clique para editar o estilo do título mestre APIAPI ManagerManager TransactionTransaction ManagerManager SteroidsSteroids + + = Securing Cloud-Based Transactions
Backend Servers
Back-End Password Free Front-Ends Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices Back-end Passwords Additional Security Layer Additional Security Layer Additional Security Layer
Unique IP for all Incoming Requests Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices 208.197.14.65 14.116.108.22 19.105.118.84 14.16.198.22 112.84.215.1 101.18.92.116 44.128.185.18 80.218.125.70 200.248.15.21
2018-03-29T18:04:22.727ZC3DFC09236761B277CF73150 Unique Operation Handle for each Transaction UTC-based ISO-8601 Timestamp 96 random bits (24 hex digits) Unique Transaction Footprint 79.228.162.514.264.337.593.543.950.336 variations per clock tick (7,9E+28)
...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle or Error Code ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud time flow1 2 Transactions Lifetime 2018-10-29T18:04:22.727ZC3DFC09236761B277CF73150 On Timeout: Automatic Rollback On Timeout: Automatic Rollback Single Parameter for every ...Commit Error Codes detailed later on Maximum Time allowed for transaction processing always known at this point
...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud Successful Transactions ...Commit call received before TimeToDie time flow1 2 3 TimeToDie equals start time plus maximum duration
Failed Transactions ...Allow INPUT PARAMETERS  Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Error Code Front-End VersaCloud ...Commit calls return error after TimeToDie time flow1 2 3 Rollback started automatically by VersaCloud Let's examine specific Transactions (and ignore error conditions for now) TimeToDie exceeded
UserAddAllow INPUT PARAMETERS  User's E-mail Full Name Birth Date Country Preferential user language Solution Token RETURN VALUE  Operation Handle UserAddCommit INPUT PARAMETERS  UserAddAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 User Registration UserAdd Transaction
UserPassword- SetAllow INPUT PARAMETERS  Email UserToken Password RETURN VALUE  Operation Handle UserPassword- SetCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Password Setup UserTokenGet INPUT PARAMETERS  SolutionToken User's E-mail RETURN VALUE  User Token Only available while password not created 3
UserLoginAllow INPUT PARAMETERS  User's e-mail User's password Login Maximum Duration RETURN VALUE  Operation Handle UserLoginCommit INPUT PARAMETERS  UserLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Time-Limited User Login During UserLogin Transaction's execution All other user requests
Specific Rights are required for certain operations; e.g. Developer  To Define Solutions and Methods User  To Instantiate Methods as Transactions Translator  To Document Solutions and Methods User Rights
SolutionAdd- Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Solution- TokenGet INPUT PARAMETERS  Login Operation Handle Solution's Name Solution Token Type RETURN VALUE  Solution Token (512 bits) Front-End VersaCloud time flow1 2 Solution Creation SolutionAdd- Allow INPUT PARAMETERS  Login Operation Handle Solution's Name RETURN VALUE  Operation Handle Always available for user with the correct rights 3
SolutionToken- CloneAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token New Solution Token Type RETURN VALUE  Operation Handle SolutionToken- CloneCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  New Solution Token Front-End VersaCloud time flow1 2 Cloning Solution Tokens
Need for different types of Solution Tokens • Master Solution Token  sign creation of and changes to Solutions (solution ownership) • Clone Solution Token  sign a Solution's transactions execution (solution access) • Solution Translator Token  sign changes to documentation (solution translation) • Query Translator Token  sign access to a Solution's audit data (solution auditing) 88B9B4D7F8A20BC7F403835EBFD14E1564090EAB337550AF53487D0B6D6AEE3F A39CE22AB1156740728F5A01FC2D61126E101F5BB7A9BE35E40FCBC6A54DFB01 128 hexadecimal digits
Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle MethodAdd- Commit INPUT PARAMETERS  MethodAdd Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Adding a Method to a Solution MethodAddAllow INPUT PARAMETERS  Login Operation Handle SolutionToken MethodName TimeToLive ReturnType, MinLen, MaxLen Cost, Prepaid Since, Until RETURN VALUE  Operation Handle One call per parameter 3
Callback- ParameterAddAllow INPUT PARAMETERS  CallBackAdd Operation Handle Method Parameter ID #1 Method Parameter ID #2 Method Parameter ID #3 ... RETURN VALUE  Operation Handle CallbackAddCommit INPUT PARAMETERS  CallbackAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Adding a Callback to a Method CallbackAddAllow INPUT PARAMETERS  Login Operation Handle Solution Token, Method Name Callback ID, Callback Name Return Type, Protocol Protocol Specific Parameters RETURN VALUE  Operation Handle Single call identifies at once the whole subset of method's parameters to be sent to callback 3
MethodRight- AddAllow INPUT PARAMETERS  Login Operation Handle Existing Solution Token Method Name Right RETURN VALUE  Operation Handle Requiring Rights for Methods MethodRight- AddCommit INPUT PARAMETERS  MethodRightAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Set of Rights owned by logged in user Set of Rights required to call the method Once a method requires specific rights, this intersection cannot be empty
SolutionLoginAllow INPUT PARAMETERS  Login Operation Handle Solution Token Login Maximum Duration RETURN VALUE  Operation Handle SolutionLoginCommit INPUT PARAMETERS  SolutionLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Solution Login During user's login into Solution All other user requests
MethodInvoke- Allow INPUT PARAMETERS  Solution Login Operation Handle Method Name RETURN VALUE  Operation Handle MethodInvoke- ParameterAdd INPUT PARAMETERS  Method Invoke Operation Handle Value for Parameter #1 Value for Parameter #2 Value for Parameter #3 ... RETURN VALUE  Operation Handle MethodInvoke- Commit INPUT PARAMETERS  Method Invoke Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Invoking a Method Each method invoked is instantiated as a transaction Associated callbacks aren't even mentioned in front-end's source code 3
Error Codes • Special values returned to signal errors • Defined as the 'errorcode' type • Extensible: for back-end servers to signal specific error conditions Error Code Syntax Problem Area :@Err#Apiddddddd API Call :@Err#Balddddddd User Balance :@Err#Cbkddddddd Callbacks :@Err#Docddddddd Documentation :@Err#Errddddddd Errors :@Err#Grpddddddd User Groups :@Err#Lngddddddd Languages :@Err#Metddddddd Methods :@Err#Prmddddddd Parameters :@Err#Qryddddddd Queries :@Err#Rgtddddddd Rights :@Err#Solddddddd Solutions :@Err#Timddddddd Time :@Err#Typddddddd Type :@Err#Usrddddddd Users :@Err#Vldddddddd Valid Values ErrorDocumentationGet INPUT PARAMETERS  Language Error Code RETURN VALUE  String (3-256) :@Err#Usr0000024 Prefix Problem Area Numeric ID LANGUAGE DOCUMENTATION English (USA) Specified user does not have the needed right to invoke this API Español (moderno) Usuario informado no tiene los derechos necesarios para llamar esta API Português (Brasil) Usuário especificado não possui os direitos necessários para chamar esta API Always initiated in :@Err# • To distinguish from normal return values • Next three positions used to define 'problem area' • Seven digits to number specific errors Documented in various human languages
Call Log Every call to VersaCloud is logged • Including parameters and return value • Auditing based on filtered views of log
VersaCloud's Internal Engine Overview PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Run on as many simultaneous threads as needed
VersaCloud's Internal Engine Step #1 Step #1 - Accept and timestamp Register start time Generate unique operation handle PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute
VersaCloud's Internal Engine Step #2 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #2 - Validate Validate Solution and Method name Verify Method's usage allowed at time of call Verify Method's recalling restrictions Verify Parameters If First Parameter is a Login Handle, verify transaction still alive If anything went wrong, continue at Step #4 If Method has associated cost, verify available balance and charge If anything goes wrong, back-end server will NOT be called
VersaCloud's Internal Engine Step #3 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #3 - Execute Call Method's Implementation Validate Method's return value If Method is a ...Commit, remove transaction from pending queue If Method is an ...Allow call, insert transaction into pending queue
VersaCloud's Internal Engine Step #4 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #4 - Log and Finalize Register processing end time Save execution data to log: start, end, balance, parameters, return value If result is errorcode and Method had cost, reimburse amount charged If result is errorcode, randomly wait a little bit Prepare return value Send return value to caller Algorithmic DDOS protection
Complete Documentation Online https://www.versacloud.technology https://www.mbi.com.br/mbi/english/versacloud/
Join us NOW! Complete documentation, tutorials and case studies available at www.versacloud.technology Get in touch! mailto:mac@matza.group whatsapp: +55 11 98281-2442 mailto:rocmayer@mbi.com.br whatsapp: +55 11 99216 9776 callto:+55 11 3230 6850

More Related Content

PDF
MATRIX Cosec Introduction New
byGateway Business Solutions
 
PDF
Versa cloud slide-deck-02-technical-introduction
byRoberto C. Mayer
 
PDF
Versa cloud slide-deck-01-pitch
byRoberto C. Mayer
 
PDF
2017 11-26-sete-chaves-da-oracao-da-serenidade
byRoberto C. Mayer
 
PPTX
WCIT 2016 Calls to Action
byRoberto C. Mayer
 
PPT
2016 WCIT Vint Cerf
byRoberto C. Mayer
 
PPTX
WCIT 2016 Soumitra Dutta
byRoberto C. Mayer
 
PPTX
WCIT 2016 Sérgio Paulo Gallindo
byRoberto C. Mayer
 
MATRIX Cosec Introduction New
byGateway Business Solutions
 
Versa cloud slide-deck-02-technical-introduction
byRoberto C. Mayer
 
Versa cloud slide-deck-01-pitch
byRoberto C. Mayer
 
2017 11-26-sete-chaves-da-oracao-da-serenidade
byRoberto C. Mayer
 
WCIT 2016 Calls to Action
byRoberto C. Mayer
 
2016 WCIT Vint Cerf
byRoberto C. Mayer
 
WCIT 2016 Soumitra Dutta
byRoberto C. Mayer
 
WCIT 2016 Sérgio Paulo Gallindo
byRoberto C. Mayer
 

More from Roberto C. Mayer

PPTX
WCIT 2016 Manu Bhardwaj
byRoberto C. Mayer
 
PPTX
WCIT 2016 Manu Bhardwaj 2
byRoberto C. Mayer
 
PPTX
WCIT 2016 Julio Cesar Ribeiro
byRoberto C. Mayer
 
PPTX
WCIT 2016 Jan Ming Ho
byRoberto C. Mayer
 
PPTX
WCIT 2016 George Newstrom
byRoberto C. Mayer
 
PDF
WCIT 2016 Dr. William P. Magee Jr
byRoberto C. Mayer
 
PPTX
WCIT 2016 Dr. Ming Ji Wu
byRoberto C. Mayer
 
PPTX
WCIT Anupan Chander 1
byRoberto C. Mayer
 
PPTX
WCIT 2016 Amy Aussieker
byRoberto C. Mayer
 
PDF
WCIT 2016 Aline Sordilli
byRoberto C. Mayer
 
PDF
2016 it-census-2015-edition-main-results
byRoberto C. Mayer
 
PPTX
2016-08-31 Comorbidades e a Dependência Química
byRoberto C. Mayer
 
PPT
Cloud iot novos requisitos software
byRoberto C. Mayer
 
PPT
Cloud iot-new-software-requirements
byRoberto C. Mayer
 
PDF
2016 05-18-it-census-2015-edition-main-results
byRoberto C. Mayer
 
PDF
2016 02-26-resumo-resultados-censo-ti-2013-2015
byRoberto C. Mayer
 
PPT
Mediação AE 2016
byRoberto C. Mayer
 
PDF
2008-11-28-jornalismo-2.0-quem-le-o-que-itu-sp
byRoberto C. Mayer
 
PDF
2015-05-19-mbi-la-economia-de-las-apis
byRoberto C. Mayer
 
PPT
2014-12 Pesquisa sobre ERP, CRM e BI no Interior Paulista
byRoberto C. Mayer
 
WCIT 2016 Manu Bhardwaj
byRoberto C. Mayer
 
WCIT 2016 Manu Bhardwaj 2
byRoberto C. Mayer
 
WCIT 2016 Julio Cesar Ribeiro
byRoberto C. Mayer
 
WCIT 2016 Jan Ming Ho
byRoberto C. Mayer
 
WCIT 2016 George Newstrom
byRoberto C. Mayer
 
WCIT 2016 Dr. William P. Magee Jr
byRoberto C. Mayer
 
WCIT 2016 Dr. Ming Ji Wu
byRoberto C. Mayer
 
WCIT Anupan Chander 1
byRoberto C. Mayer
 
WCIT 2016 Amy Aussieker
byRoberto C. Mayer
 
WCIT 2016 Aline Sordilli
byRoberto C. Mayer
 
2016 it-census-2015-edition-main-results
byRoberto C. Mayer
 
2016-08-31 Comorbidades e a Dependência Química
byRoberto C. Mayer
 
Cloud iot novos requisitos software
byRoberto C. Mayer
 
Cloud iot-new-software-requirements
byRoberto C. Mayer
 
2016 05-18-it-census-2015-edition-main-results
byRoberto C. Mayer
 
2016 02-26-resumo-resultados-censo-ti-2013-2015
byRoberto C. Mayer
 
Mediação AE 2016
byRoberto C. Mayer
 
2008-11-28-jornalismo-2.0-quem-le-o-que-itu-sp
byRoberto C. Mayer
 
2015-05-19-mbi-la-economia-de-las-apis
byRoberto C. Mayer
 
2014-12 Pesquisa sobre ERP, CRM e BI no Interior Paulista
byRoberto C. Mayer
 

Recently uploaded

PDF
How to Design Premium Health (Public Health) PPT Using AI? Top Strategies
byPublic Health Concern Nepal
 
PPTX
CRM for the Insurance Industry Lessons for Insurance CIOs and Digital Leaders...
byKerry Millar
 
PDF
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
PDF
apidays Australia 2025 | User Brainpower vs. AI Blind Spots in API Docs
byapidays
 
PPTX
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
PPT
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
PPTX
apidays Australia 2025 | Building AI RAG Applications with No Code.pptx
byapidays
 
PPTX
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
DOCX
Mathematical reviewer gor mmw in theofern
byyeojlevantinojesalva
 
PPTX
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
PDF
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
PDF
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
PDF
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PDF
LUXHUB: a detailed look at 2025...and fast forward to 2026
byalexandrekeilmann1
 
PPTX
Strategic Shelf Planning for the New Year Turning Resolutions into Revenue .pptx
byAnoop Ashok
 
PPTX
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 
PDF
Computer Science Conferences 2026 | Research by SAI Conference
byHealth Conference 2026
 
How to Design Premium Health (Public Health) PPT Using AI? Top Strategies
byPublic Health Concern Nepal
 
CRM for the Insurance Industry Lessons for Insurance CIOs and Digital Leaders...
byKerry Millar
 
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
apidays Australia 2025 | User Brainpower vs. AI Blind Spots in API Docs
byapidays
 
Understanding-Search-Algorithms_09-12-25.pptx
byshaikmahammedtauheed
 
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
apidays Australia 2025 | Building AI RAG Applications with No Code.pptx
byapidays
 
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
Mathematical reviewer gor mmw in theofern
byyeojlevantinojesalva
 
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
apidays Australia 2025 | The Strategic Role of APIs in Digital Transformation
byapidays
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
LUXHUB: a detailed look at 2025...and fast forward to 2026
byalexandrekeilmann1
 
Strategic Shelf Planning for the New Year Turning Resolutions into Revenue .pptx
byAnoop Ashok
 
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Azure DevOps Managed Services: Driving Speed, Security, and Business Growth
byjohncarterjn
 
Computer Science Conferences 2026 | Research by SAI Conference
byHealth Conference 2026
 

Versa cloud slide-deck-03-security-aspects

  • 1.
    Transactions as aService Security AspectsSecurity Aspects
  • 2.
    Clique para editaro estilo do título mestre APIAPI ManagerManager TransactionTransaction ManagerManager SteroidsSteroids + + = Securing Cloud-Based Transactions
  • 3.
  • 4.
    Back-End Password FreeFront-Ends Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices Back-end Passwords Additional Security Layer Additional Security Layer Additional Security Layer
  • 5.
    Unique IP forall Incoming Requests Cloud-Based Transaction Manager Back-end Servers Computer Programs Browsers & IoT Gadgets Mobile Devices 208.197.14.65 14.116.108.22 19.105.118.84 14.16.198.22 112.84.215.1 101.18.92.116 44.128.185.18 80.218.125.70 200.248.15.21
  • 6.
    2018-03-29T18:04:22.727ZC3DFC09236761B277CF73150 Unique Operation Handlefor each Transaction UTC-based ISO-8601 Timestamp 96 random bits (24 hex digits) Unique Transaction Footprint 79.228.162.514.264.337.593.543.950.336 variations per clock tick (7,9E+28)
  • 7.
    ...Allow INPUT PARAMETERS  Parameter#1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle or Error Code ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud time flow1 2 Transactions Lifetime 2018-10-29T18:04:22.727ZC3DFC09236761B277CF73150 On Timeout: Automatic Rollback On Timeout: Automatic Rollback Single Parameter for every ...Commit Error Codes detailed later on Maximum Time allowed for transaction processing always known at this point
  • 8.
    ...Allow INPUT PARAMETERS  Parameter#1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle or Error Code Front-End VersaCloud Successful Transactions ...Commit call received before TimeToDie time flow1 2 3 TimeToDie equals start time plus maximum duration
  • 9.
    Failed Transactions ...Allow INPUT PARAMETERS Parameter #1 Parameter #2 Parameter #3 ... Parameter #n RETURN VALUE  Operation Handle ...Commit INPUT PARAMETERS  Operation Handle RETURN VALUE  Error Code Front-End VersaCloud ...Commit calls return error after TimeToDie time flow1 2 3 Rollback started automatically by VersaCloud Let's examine specific Transactions (and ignore error conditions for now) TimeToDie exceeded
  • 10.
    UserAddAllow INPUT PARAMETERS  User'sE-mail Full Name Birth Date Country Preferential user language Solution Token RETURN VALUE  Operation Handle UserAddCommit INPUT PARAMETERS  UserAddAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 User Registration UserAdd Transaction
  • 11.
    UserPassword- SetAllow INPUT PARAMETERS  Email UserToken Password RETURNVALUE  Operation Handle UserPassword- SetCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Password Setup UserTokenGet INPUT PARAMETERS  SolutionToken User's E-mail RETURN VALUE  User Token Only available while password not created 3
  • 12.
    UserLoginAllow INPUT PARAMETERS  User'se-mail User's password Login Maximum Duration RETURN VALUE  Operation Handle UserLoginCommit INPUT PARAMETERS  UserLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Time-Limited User Login During UserLogin Transaction's execution All other user requests
  • 13.
    Specific Rights arerequired for certain operations; e.g. Developer  To Define Solutions and Methods User  To Instantiate Methods as Transactions Translator  To Document Solutions and Methods User Rights
  • 14.
    SolutionAdd- Commit INPUT PARAMETERS  OperationHandle RETURN VALUE  Operation Handle Solution- TokenGet INPUT PARAMETERS  Login Operation Handle Solution's Name Solution Token Type RETURN VALUE  Solution Token (512 bits) Front-End VersaCloud time flow1 2 Solution Creation SolutionAdd- Allow INPUT PARAMETERS  Login Operation Handle Solution's Name RETURN VALUE  Operation Handle Always available for user with the correct rights 3
  • 15.
    SolutionToken- CloneAllow INPUT PARAMETERS  LoginOperation Handle Existing Solution Token New Solution Token Type RETURN VALUE  Operation Handle SolutionToken- CloneCommit INPUT PARAMETERS  Operation Handle RETURN VALUE  New Solution Token Front-End VersaCloud time flow1 2 Cloning Solution Tokens
  • 16.
    Need for differenttypes of Solution Tokens • Master Solution Token  sign creation of and changes to Solutions (solution ownership) • Clone Solution Token  sign a Solution's transactions execution (solution access) • Solution Translator Token  sign changes to documentation (solution translation) • Query Translator Token  sign access to a Solution's audit data (solution auditing) 88B9B4D7F8A20BC7F403835EBFD14E1564090EAB337550AF53487D0B6D6AEE3F A39CE22AB1156740728F5A01FC2D61126E101F5BB7A9BE35E40FCBC6A54DFB01 128 hexadecimal digits
  • 17.
    Method- ParameterAddAllow INPUT PARAMETERS  MethodAddOperation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle Method- ParameterAddAllow INPUT PARAMETERS  MethodAdd Operation Handle ID, Name, Type, MinLen, MaxLen Optional, ReentrancyKeyMember DefaultValue RETURN VALUE  Operation Handle MethodAdd- Commit INPUT PARAMETERS  MethodAdd Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Adding a Method to a Solution MethodAddAllow INPUT PARAMETERS  Login Operation Handle SolutionToken MethodName TimeToLive ReturnType, MinLen, MaxLen Cost, Prepaid Since, Until RETURN VALUE  Operation Handle One call per parameter 3
  • 18.
    Callback- ParameterAddAllow INPUT PARAMETERS  CallBackAddOperation Handle Method Parameter ID #1 Method Parameter ID #2 Method Parameter ID #3 ... RETURN VALUE  Operation Handle CallbackAddCommit INPUT PARAMETERS  CallbackAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Adding a Callback to a Method CallbackAddAllow INPUT PARAMETERS  Login Operation Handle Solution Token, Method Name Callback ID, Callback Name Return Type, Protocol Protocol Specific Parameters RETURN VALUE  Operation Handle Single call identifies at once the whole subset of method's parameters to be sent to callback 3
  • 19.
    MethodRight- AddAllow INPUT PARAMETERS  LoginOperation Handle Existing Solution Token Method Name Right RETURN VALUE  Operation Handle Requiring Rights for Methods MethodRight- AddCommit INPUT PARAMETERS  MethodRightAdd Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Set of Rights owned by logged in user Set of Rights required to call the method Once a method requires specific rights, this intersection cannot be empty
  • 20.
    SolutionLoginAllow INPUT PARAMETERS  LoginOperation Handle Solution Token Login Maximum Duration RETURN VALUE  Operation Handle SolutionLoginCommit INPUT PARAMETERS  SolutionLoginAllow Operation Handle RETURN VALUE  Operation Handle Front-End VersaCloud time flow1 2 Solution Login During user's login into Solution All other user requests
  • 21.
    MethodInvoke- Allow INPUT PARAMETERS  SolutionLogin Operation Handle Method Name RETURN VALUE  Operation Handle MethodInvoke- ParameterAdd INPUT PARAMETERS  Method Invoke Operation Handle Value for Parameter #1 Value for Parameter #2 Value for Parameter #3 ... RETURN VALUE  Operation Handle MethodInvoke- Commit INPUT PARAMETERS  Method Invoke Operation Handle RETURN VALUE  OperationHandle Front-End VersaCloud time flow1 2 Invoking a Method Each method invoked is instantiated as a transaction Associated callbacks aren't even mentioned in front-end's source code 3
  • 22.
    Error Codes • Specialvalues returned to signal errors • Defined as the 'errorcode' type • Extensible: for back-end servers to signal specific error conditions Error Code Syntax Problem Area :@Err#Apiddddddd API Call :@Err#Balddddddd User Balance :@Err#Cbkddddddd Callbacks :@Err#Docddddddd Documentation :@Err#Errddddddd Errors :@Err#Grpddddddd User Groups :@Err#Lngddddddd Languages :@Err#Metddddddd Methods :@Err#Prmddddddd Parameters :@Err#Qryddddddd Queries :@Err#Rgtddddddd Rights :@Err#Solddddddd Solutions :@Err#Timddddddd Time :@Err#Typddddddd Type :@Err#Usrddddddd Users :@Err#Vldddddddd Valid Values ErrorDocumentationGet INPUT PARAMETERS  Language Error Code RETURN VALUE  String (3-256) :@Err#Usr0000024 Prefix Problem Area Numeric ID LANGUAGE DOCUMENTATION English (USA) Specified user does not have the needed right to invoke this API Español (moderno) Usuario informado no tiene los derechos necesarios para llamar esta API Português (Brasil) Usuário especificado não possui os direitos necessários para chamar esta API Always initiated in :@Err# • To distinguish from normal return values • Next three positions used to define 'problem area' • Seven digits to number specific errors Documented in various human languages
  • 23.
    Call Log Every callto VersaCloud is logged • Including parameters and return value • Auditing based on filtered views of log
  • 24.
    VersaCloud's Internal EngineOverview PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Run on as many simultaneous threads as needed
  • 25.
    VersaCloud's Internal EngineStep #1 Step #1 - Accept and timestamp Register start time Generate unique operation handle PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute
  • 26.
    VersaCloud's Internal EngineStep #2 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #2 - Validate Validate Solution and Method name Verify Method's usage allowed at time of call Verify Method's recalling restrictions Verify Parameters If First Parameter is a Login Handle, verify transaction still alive If anything went wrong, continue at Step #4 If Method has associated cost, verify available balance and charge If anything goes wrong, back-end server will NOT be called
  • 27.
    VersaCloud's Internal EngineStep #3 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #3 - Execute Call Method's Implementation Validate Method's return value If Method is a ...Commit, remove transaction from pending queue If Method is an ...Allow call, insert transaction into pending queue
  • 28.
    VersaCloud's Internal EngineStep #4 PROCEDURE ApiCall( Solution, Method, Parameter01, Parameter02, Parameter03, … Parameter14, ReturnValue ) BEGIN END Step #4 - Log and Finalize Step #1 - Accept and timestamp Step #2 - Validate Step #3 - Execute Step #4 - Log and Finalize Register processing end time Save execution data to log: start, end, balance, parameters, return value If result is errorcode and Method had cost, reimburse amount charged If result is errorcode, randomly wait a little bit Prepare return value Send return value to caller Algorithmic DDOS protection
  • 29.
  • 30.
    Join us NOW! Completedocumentation, tutorials and case studies available at www.versacloud.technology Get in touch! mailto:mac@matza.group whatsapp: +55 11 98281-2442 mailto:rocmayer@mbi.com.br whatsapp: +55 11 99216 9776 callto:+55 11 3230 6850