Abstract
This paper proposes a security platform, SCAP(Security platform for CORBA based APplication), to cope with potential threats in a distributed object system. SOAP supports CORBA security specification announced by OMG. SOAP is composed of four functional blocks which co-work with ORB to provide security services: Authentication Block, Security Association Block, Access Control Block, and Security Information Management Block. It is designed to support Common Secure Interoperability functionality level 2 which is useful for large scale intra- or inter-enterprise network based applications. Actual security services which are dependent on supporting security technology will be provided as external security services for replaceability. Implementation issues such as how to simulate an interceptor mechanism using a commercial ORB product without source code, and how to extend Current object required for security services are also described.
This is a preview of subscription content, log in via an institution.
Preview
Unable to display preview. Download preview PDF.
References
IEEE 1003.22/D6, Draft Guide to the POSIX Open System Environment: A Security Framework, IEEE Doc. Number NO.13, Aug. 1995.
IONA Technologies Ltd., Orbix Reference Guide, 1997.
J. Linn, Generic Security Service Application Programming Interface, IETF RF C1508, Sep. 1993.
Object Management Group, CORBA Security, OMG Document NO 95-12-1, Dec., 1995.
Object Management Group, Common Secure Interoperability Specification, OMG Document no. orbos/96-06-20, Jun. 1996.
Object Management Group, The Common Object Request Broker: Architecture and Specification, 2.0ed., Jul., 1995.
OMG Security Working Group, OMG White Paper on Security, OMG Doc. No. 94-4-16, Apr., 1994.
R. Oppliger, “Authentication Systems for Secure Networks,” Artech House, pp.29–62, 1996.
OSF, Open Software Foundation Training Course, OSF DCE System Administration Course, Student Guide, Vol. 1.0 Dec. 1992.
T. Parker and D. Pinkas, SESAME V4 Overview, SESAME Issue 1, Dec. 1995
POSIX, Protection, Audit, and Control Interfaces, IEEE P1003.6.1, 1995.
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 1997 Springer-Verlag
About this paper
Cite this paper
Choi, R., Na, J., Lee, K., Kim, E., Han, W. (1997). Design of a security platform for CORBA based application. In: Han, Y., Okamoto, T., Qing, S. (eds) Information and Communications Security. ICICS 1997. Lecture Notes in Computer Science, vol 1334. Springer, Berlin, Heidelberg. https://doi.org/10.1007/BFb0028466
Download citation
DOI: https://doi.org/10.1007/BFb0028466
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-63696-0
Online ISBN: 978-3-540-69628-5
eBook Packages: Springer Book Archive