Design of a security platform for CORBA based application

  • Rakman Choi
  • Jungchan Na
  • Kwonil Lee
  • Eunmi Kim
  • Wooyong Han
Session 3: Network Security
First Online:
Part of the Lecture Notes in Computer Science book series (LNCS, volume 1334)

Abstract

This paper proposes a security platform, SCAP(Security platform for CORBA based APplication), to cope with potential threats in a distributed object system. SOAP supports CORBA security specification announced by OMG. SOAP is composed of four functional blocks which co-work with ORB to provide security services: Authentication Block, Security Association Block, Access Control Block, and Security Information Management Block. It is designed to support Common Secure Interoperability functionality level 2 which is useful for large scale intra- or inter-enterprise network based applications. Actual security services which are dependent on supporting security technology will be provided as external security services for replaceability. Implementation issues such as how to simulate an interceptor mechanism using a commercial ORB product without source code, and how to extend Current object required for security services are also described.

This is a preview of subscription content, log in to check access.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    IEEE 1003.22/D6, Draft Guide to the POSIX Open System Environment: A Security Framework, IEEE Doc. Number NO.13, Aug. 1995.Google Scholar
  2. 2.
    IONA Technologies Ltd., Orbix Reference Guide, 1997.Google Scholar
  3. 3.
    J. Linn, Generic Security Service Application Programming Interface, IETF RF C1508, Sep. 1993.Google Scholar
  4. 4.
    Object Management Group, CORBA Security, OMG Document NO 95-12-1, Dec., 1995.Google Scholar
  5. 5.
    Object Management Group, Common Secure Interoperability Specification, OMG Document no. orbos/96-06-20, Jun. 1996.Google Scholar
  6. 6.
    Object Management Group, The Common Object Request Broker: Architecture and Specification, 2.0ed., Jul., 1995.Google Scholar
  7. 7.
    OMG Security Working Group, OMG White Paper on Security, OMG Doc. No. 94-4-16, Apr., 1994.Google Scholar
  8. 8.
    R. Oppliger, “Authentication Systems for Secure Networks,” Artech House, pp.29–62, 1996.Google Scholar
  9. 9.
    OSF, Open Software Foundation Training Course, OSF DCE System Administration Course, Student Guide, Vol. 1.0 Dec. 1992.Google Scholar
  10. 10.
    T. Parker and D. Pinkas, SESAME V4 Overview, SESAME Issue 1, Dec. 1995Google Scholar
  11. 11.
    POSIX, Protection, Audit, and Control Interfaces, IEEE P1003.6.1, 1995.Google Scholar

Copyright information

© Springer-Verlag 1997

Authors and Affiliations

  • Rakman Choi
    • 1
  • Jungchan Na
    • 1
  • Kwonil Lee
    • 1
  • Eunmi Kim
    • 1
  • Wooyong Han
    • 1
  1. 1.S/W Engineering SectionElectronics and Telecommunications Research InstituteTaejeonKorea

Personalised recommendations