Authorization in CORBA security.

Autor: Goos, Gerhard, Hartmanis, Juris, Leeuwen, Jan, Quisquater, Jean-Jacques, Deswarte, Yves, Meadows, Catherine, Gollmann, Dieter, Karjoth, Günter
Zdroj: Computer Security - ESORICS 98; 1998, p143-158, 16p
Abstrakt: Integration of security and object-oriented techniques is critical for the successful deployment of distributed object systems. In December of 1995, the Object Management Group published a security service specification called CORBA Security to handle security in object systems that conform to the Object Management Architecture. This paper provides a rigorous definition of the authorization part of CORBA Security. Its semantics is given in terms of an access control matrix. The dependencies among the authorization elements are analyzed and possible interpretations for access control decision functions are given. The expressivity of the authorization model to define a wide range of policies, in particular mandatory access control, is discussed. [ABSTRACT FROM AUTHOR]
Databáze: Supplemental Index