11-20 [Tech Info] This section introduces the latest ICT technologies related to your fields of interests: project management, network security, application development methodologies, and so forth. OIC - JICA.

11. Biometric Technology to be introduced into Passport
12. New Functions on Public LMS
13. The Report 'Trends in Enterprise Architecture' 2005
14. Windows Vista Coming Next Year
15. Wireless LAN Today
16. J2SE-Java 2 platform, Standard Edition 5.0("Tiger") released in
Sep. 2004 was made various improvements
17. Biometrics - Vein authentication
18. Eclipse 3.2 is available now as part of the Callisto
19. Information leakage caused by Winny
20. Samba 4.0 New Release October 2006

----------------------------------------------------------------------
11 [Tech Info] Biometric Technology to be introduced into Passport
----------------------------------------------------------------------

Do you know "Minority Report" starring Tom Cruise? It is a movie about
future society, where irises of all humans are registered for
identification, in 2054. In this movie, there is a shocking scene of
eyeball implantation in order to spoof as another person. Like this,
the authentication technology by "unique and unchangeable" living body
feature is called "Biometrics."

Biometrics is going to be introduced for preventing forged passport.
International Civil Aviation Organization (ICAO) started an argument
which biometric technology should be selected from face, fingerprint,
iris, signature, voiceprint, or shape of palm in the late 1990s, and
reached the conclusion that face is adopted for ePassport.

Based on the international conclusion, Japan is planning to start to
issue an ePassport in March 2006. The image of face will be saved in
an IC chip of each passport. Since face is changeable compared to
fingerprint, authentication accuracy falls off with time. However,
after research studies, it is verified that accuracy can perform for
10 years, which is an available term of passport, with validity. A
development of guideline for photography has already started, and it
is expected to improve accuracy more.

----------------------------------------------------------------------
12 [What's New] New Functions on Public LMS
----------------------------------------------------------------------

OIC has begun to provide you with two functions on our public LMS:
"OIC-OSDP" and "SVCC."

- OIC Open Source Software Development Project (OIC-OSDP)

OIC-OSDP are the projects for you ex-participants to develop open
source software by yourself from all parts of the world. We
provide you with communication tools for "Suggestion of new
project", "Recruitment of project members", "Examination of
specification", and so on. By using these tools, you can initiate
new project and start development of open source software in
cooperation with other ex-participants.

- Streaming Video of Computer Courses (SVCC)

SVCC is one of the support programs for coming-participants &
ex-participants. We have delivered some video clips of various
lecture scenes in OIC computer courses. You can utilize them to
do your enlightening promotion activities and so on. And we would
like you to send us your video clips, because we are going to
deliver good activities performed by alumni for
coming-participants.

URL for OIC Public-LMS: https://pblms.jica-oic.jp/

For inquiry about your login ID and password.
Please contact us at: newsletter@pblms.jica-oic.jp

----------------------------------------------------------------------
13 [Tech Info] The Report 'Trends in Enterprise Architecture' 2005
----------------------------------------------------------------------

Institute For Enterprise Architecture Developments(IFEAD) is a
research and information exchange organization working on the future
state of Enterprise Architecture. This organization has a Website
which provides us with a lot of valuable information of Enterprise
Architecture(EA).

URL: http://www.enterprise-architecture.info/index.htm

You can obtain information about EA standards, EA methods, EA tools,
EA & strategy, EA best practices, EA governance, EA education, and so
on from this website. And also this website has links to other various
EA websites which help us plan and implement EA.

IFEAD conducted survey on trends in EA. This survey is a part of a
yearly recurrent survey to measure the progress and developments in
EA. The survey is based on a 25 question questionnaire such as "Why is
EA important for your organization?", "For what kind of issues do you
plan an EA program?", "Is your organization familiar with the
importance of EA?", "Is EA part of your organizations strategic
governance?", "At which level is EA part of your organizations
governance structure?". IFEAD analyzed the result of those
questions. This report guides you through the latest trends of EA by
referring to the report.

Try to access and download the report from IFEAD website.
URL:
http://www.enterprise-architecture.info/Images/EA%20Survey/Enterprise%20Architecture%20Survey%202005%20IFEAD%20v10.pdf
(C) Copyright, Institute For Enterprise Architecture Developments
(IFEAD), 2005 - All Rights Reserved.

----------------------------------------------------------------------
14 [Tech Info] "Windows Vista" Coming Next Year
----------------------------------------------------------------------

(1) "Cheetah", "Jaguar", "Panther", "Tiger"
(2) "Chicago", "Memphis", "Whistler", "Longhorn"

Can you guess what they mean?

(1) is a list of large cats, well known project code names of Mac OSX.

("Cheetah"=Ver.10.0, "Jaguar"=Ver.10.2, "Panther"=Ver.10.3, "Tiger"=Ver.10.4).

(2) is a list of project code names of Microsoft Windows OS named after place names.

("Chicago"=Windows95, "Memphis"=Windows98, "Whistler"=WindowsXP, "Longhorn"=WindowsVista)

Traditional image of code name is like a secret code informally given
to the project under development and used within the organization. But
these days, some major computer companies like Microsoft, Apple,
Intel, announce their project code names to the public and they are
widely used till the official product names are published.

In July 2005, next version of Windows OS got their official name
"Windows Vista" and project code name "Longhorn" finally completed its
role. The code name "Longhorn" was so common to the public users
because debut of the new version had been eagerly hoped almost five
years after the current version of Windows XP was released in 2001.
Despite its debut originally planned in 2004, development schedule was
revised several times and according to Microsoft's recentannouncement,
"Windows Vista" for consumers would be launched in January 2007.

"Vista" means vision. Microsoft said that the name "Vista" had the
sense of bringing clarity, so it was expected to make things clearer
and pretty simple. "Windows Vista" emphasizes security function, more
flexible searching function and more sophisticated user interface
compared to WindowsXP. (Incidentally, "XP" means experience.) "Windows
Vista" consists of six editions, "Starter 2007," "Home Basic," "Home
Premium," and "Ultimate" for home and "Business" and "Enterprise" for
business, to cover all the segments of users.

This Windows OS development project spent a long hard period as
"Longhorn." With the official name "Vista," will Windows OS acquire
clear vision and bright future?

About "Windows Vista"
URL: http://www.microsoft.com/windowsvista/

----------------------------------------------------------------------
15 [Tech Info] Wireless LAN Today
----------------------------------------------------------------------

Nowadays many organizations tend to adopt the wireless LAN in addition
to their LAN. By using the wireless LAN, it becomes easy to construct
LAN and reallocate the computers connected to it.

There are three major types of the wireless LAN specification as follows:

a) IEEE802.11a : MAX 54Mbps (speed), 5 GHz
b) IEEE802.11b : MAX 11Mbps (speed), 2.4GHz
c) IEEE802.11g : MAX 54Mbps (speed), 2.4GHz

The user will select the appropriate types of the wireless LAN above
according to their network usage and the compliance of the Radio Law
of each country.

In addition to the above three specifications, IEEE802.11n is now
under discussion to make available to the public and this may become
one of the main stream of wireless LAN in few years.

Main characteristic of IEEE802.11n is in its higher network speed.
The maximum speed of current wireless LAN is 54Mbps, whereas that of
IEEE802.11n is approximately up to 300Mbps. This improvement of the
speed is so drastic, it is almost more than six times of the current
network speed.

IEEE802.11n mainly adopts the following advanced technologies to
improve the network speed and smooth data transmission:

1) to increase the number of antennas
IEEE802.11n uses the technology called 'MIMO (multi input and multi
output)' and can accept the data transmission from four antennas
simultaneously. This means that data can be transmitted four times
faster than before.

2) to improve the data transmission efficiency
IEEE802.11n minimizes the unnecessary data length and reduces the
interval time for data transmission. The volume of data will be
increased by approximately 140% by this technique.

3) to utilize wider bandwidth
The current bandwidth range is 20MHz and it will be doubled up to
40MHz. Therefore, the network speed of IEEE802.11n will be upgraded
as:

(54Mbps) x (2) x (1.4) x (2) = approximately 300Mbps

The specification of IEEE802.11n is scheduled to be fixed by March, 2007.

For more information, please refer to:

http://grouper.ieee.org/groups/802/11/

----------------------------------------------------------------------
16 [Tech Info] New features of J2SE 5.0
----------------------------------------------------------------------

J2SE-Java 2 platform, Standard Edition 5.0("Tiger") released in
Sep. 2004 was made various improvements.

For details, see http://java.sun.com/j2se/1.5.0/docs/relnotes/features.html

Major concepts of J2SE5.0 are as follows.

(1)Ease of Development
(2)Performance and Scalability
(3)Monitoring and Manageability
(4)Desktop Client

(1) is the concept to aim for simplification of development by extending the Java programming language.

(2)-(4) are the concepts to aim for robust execution environment. We
focus on "(1)Ease of Development(EoD)" in this article.

New feature categorized as EoD are as follows.

- Generics-Add Generic Types to the Java Programming Language
- Extending the Java Programming Language with Enumerations, Autoboxing, Enhanced for loops and Static Import
- Metadata (A Metadata Facility for the Java Programming Language)

Let's see familiar for loop this time.

We describe code to handle array or collection as bellow.

----------Case 1:Array----------
String[] str = new String[3];
str[0] = "one";
str[1] = "two";
str[2] = "three";
for(int i = 0; i < str.length; i++) {
System.out.println(str[i]);
}
----------------------------------
----------Case 2:Collection----------
Collection str = new ArrayList();
str.add("one");
str.add("two");
str.add("three");
for(Iterator i = str.iterator(); i.hasNext()) {
System.out.println(i.next());
}
----------------------------------------

We have to declare index or iterator for each "for loop".
When we use "Enhanced for loops", we can code simpler.

----------Case1----------
for(String s : str) {
System.out.println(s);
}
---------------------------
----------Case2----------
for(Object o : str) {
System.out.println(o);
}
---------------------------

Like this, you can define your code simpler and eliminate bugs as a
result. Please try to make a simple and readable program with adopting
Java evolution.

----------------------------------------------------------------------
17 [Tech Info] Biometrics - Vein authentication
----------------------------------------------------------------------

Recently biometrics is getting introduced in Japan. This topic is vein
authentication, which is a kind of biometrics. Vein authentication
uses a blood vessel to identify each person. (Not capillary vessel but
thick and stable one.) Even twins do not have the same pattern of
veins. And since vein pattern is biometrics information, we can not
get the information by photo and contact.

According to a certain Japanese manufacture's report, the ratio of
identifying an original correctly is more than 99.99%¡¡and the ratio
of identifying others incorrectly is less than 0.00008%.

Progress of Vein Authentication for public use is as follows:

Vein authentication started working at major banks in Japan in the
middle of 2004. In 2005, it started working by little and little in
university hospitals, condominiums and houses. A certain university in
Tokyo is using it as the student identification. This is a rare case.

In 2006 , Japanese government passed the law which requires a bank to
indemnify a customer who suffered damages by stolen or forged bank
card. That is why financial institutions are forced to increase their
security level. Vein authentication is getting introduced especially
in financial facilities against social background like this.

----------------------------------------------------------------------
18 [Tech Info] Eclipse 3.2 is available now as part of the Callisto
----------------------------------------------------------------------

The Eclipse Foundation announced the release of
10 Eclipse open source projects on June 26, 2006.
This release event, named Callisto, is one of the largest
multi-project releases undertaken by an open source community.

A major emphasis of Callisto is to make it easier for organizations
to adopt Eclipse as the platform for application development.
By releasing 10 projects at the same time, the goal is to eliminate
uncertainty about version compatibility and make it easier to incorporate
multiple projects into your environment.

Below is a listing of all ten projects
involved in the Callisto Simultaneous Release.

- Business Intelligence and Reporting Tools (BIRT) Project 2.1
Reporting system that integrates with your application
to produce compelling reports for both web and PDF

- C/C++ IDE (CDT) 3.1
C/C++ Development Tooling

- Data Tools Platform (DTP) 1.0
Tool and Framework for Data Oriented Application Development

- Eclipse Modeling Framework (EMF) 2.2
Modeling framework and code generation facility for building tools
and other applications based on a structured data model

- Graphical Editor Framework (GEF) 3.2
Framework to create a rich graphical editor
from an existing application model

- Graphical Modeling Framework (GMF) 1.0
Generative component and runtime infrastructure for developing
graphical editors based on EMF and GEF

- Eclipse Project 3.2
Eclipse Platform

- Eclipse Test and Performance Tools Platform Project (TPTP) 4.2
Platform supplying frameworks and services
for test and performance tools

- Eclipse Web Tools Platform Project (WTP) 1.5
Tools for developing J2EE Web applications

- Visual Editor (VE) 1.2
Development platform supplying frameworks for creating GUI builders

Callisto provides a single release event
that synchronizes version compatibility and schedules.
The Callisto Discovery Site allows you to install any of the projects
included in the Callisto Release from a single location.
Instead of downloading each project individually
and then installing them into your workspace,
the Callisto Discovery Site simplifies the process.

As part of Callisto, the new Eclipse 3.2 SDK release features
some exciting new capabilities for Java and Web Developers, including:

- Java 6 support
- Refactoring scripts
- Static analysis of Java code
- Improved code completion and quick fix support
- Improved usability and performance
- Support for Mac OSX on Intel and preview support for Windows Vista

For more information, please refer
http://www.eclipse.org/callisto/

To get the current Eclipse, please visit
http://www.eclipse.org/downloads/index.php

----------------------------------------------------------------------
19 [Tech Info] Information leakage caused by Winny
----------------------------------------------------------------------

In Japan, computers using "Winny", a most popular file-sharing
software, have become widely infected by several warms, and then such
incidents that confidential files are flowed out in Winny Network have
happened quite often not only from the computers of individuals or
private companies but also from the ones of public institutes such as
a police station, Self-Defense Forces, Japan Post, a jail, a court, a
nuclear electric plant, a local government, and public offices. It's
because workers bring back home individual information treated in
their work, and those sloppy managements have been criticized very
much.

Winny is a P2P (Peer to Peer) file-sharing program developed by a
Japanese, while Napster, Gnutella, WinMX, and Share are known as
common typical file-sharing programs. A file-sharing software is
originally a tool for exchanging sound files and video files which are
too large to exchange via e-mail and web. This idea itself is not
illegal, but most files traded are copyrighted files, which makes us
difficult to tell whether the software is evil or not.

Let's see how Winny works actually. When a user put a file in a
specified upload folder, it will be copied to his/her Winny share
folder, which is connected to Winny Network. When other users download
it, it is copied to their Winny share folder too. As this downloadings
done so many times, files spread out among a lot of computers then
nobody can tell when and who first put it into the public and where
the files exist physically.

Information leakage happens by being affected by a virus. This virus
comes in sometimes via e-mail, but mostly via Winny Network as an
attachment of an illegally shared file. When you open the file, your
computer will be affected by the virus. The virus copies the contents
of your computer or your mail and exposes them to Winny Network.

Once a file is exposed in Winny Network, it is downloaded by many
people and it becomes impossible to reclaim all the copies of it
because of the anonymity of Winny Network. When the incident
broadcasted as a news, some people are even willing to download such
files to enjoy the party's suffering.

Let's consider what kinds of countermeasures are effective.

There are two major countermeasures. One is to disable starting Winny
by using an OS function to forbid the execution of an application. If
your computer is Windows XP, you can disable starting of Winny by
specifying in "Local Security Settings" the filename of Winny
"winny.exe", or its hash value.

The other is to block off Winny from your network. To restrict the
network utilization by setting a filtering function of the firewall is
effective for such a network whose client computers can communicate
with limited hosts. For example, if a client computer accesses the
Internet through a specified mail server, a DNS server, or a proxy
server, you can allow only the proper use of the Internet and cut off
the other use by setting on these servers. If client computers use
those softwares like Skype which communicate directly with multiple
hosts at once, you have to analyze the traffic pattern of Winny or
introduce a device which deciphers and cuts off communication.

Not to mention Winny, any file-sharing software always goes with the
danger of information leakage. It is quite important to establish a
security policy in your organization and take measures such as "Do not
bring business data out from the company", "Do not install Winny in
your home computer", and "Configure client computers not to allow
running Winny". Please be sure to take care.

For more detailed information on Winny, see this site.
http://en.wikipedia.org/wiki/Winny


----------------------------------------------------------------------
20. [Tech Info] Samba 4.0 New Release October 2006
----------------------------------------------------------------------

When sharing file documents, Samba package is often used and very
popular in Linux environment. And now, Samba is going to release an
attractive version. While the stable version is Samba 3.0 at present,
a new version, Samba 4.00tp3 has just been released on October 16 this
year. Here please note that the version "tp" is called Technology
Preview, which means it is not stable version, but absolutely just for
verification or examination. Therefore, the "tp" version can't be
installed into a real system.

The main attraction of Samba 4.0 is to realize Windows Domain
Controller and implement the related protocols. In order to control
Windows PCs, Active Directory is mainstream nowadays. The current
version Samba 3.0 has compatibility with Windows NT domain, however it
can't be an Active Directory Domain Controller by itself. Samba 4.0
performs as an Active Directory Domain Controller which Windows PCs
can belong to.

Furthermore, it has the following features.

- NTVFS implementation
While Samba 3.0 has no compatibility with Windows file system,
Samba 4.0 implements NTVFS, which provides almost same features as
NTFS.

- LDAP and Kerberos integration
Samba 3.0 needs to utilize external packages for LDAP and Kerberos,
but Samba 4.0 has built-in functions for those.

Notice
- It doesn't have built-in functions for DNS, so needs to work with
BIND.
- It doesn't provide a GUI management tool.

This is a good opportunity to verify the new Samba, why don't you try
it? Samba 4.00tp3 is available from the following website.

http://us2.samba.org/samba/ftp/samba4/