A Resource Access Decision Service for CORBA-Based Distributed Systems
نویسندگان
چکیده
Decoupling authorization logic from application logic allows applications with fine-grain access control requirements to be independent from a particular access control policy and from factors that are used in authorization decisions as well as access control models, no matter how dynamic those polices and factors are. It also enables elaborate and consistent access control policies across heterogeneous systems. We present design of a service for resource access authorization in distributed systems. The service enables to decouple authorization logic from application functionality. Although the described service is based on CORBA technology, the design approach can be successfully used in any distributed computing environment.
منابع مشابه
DRN: A CORBA-Based Distributed Resource Navigation System for Data Grid
Data grids are becoming increasingly important for sharing distributed data and information in collaborative environments. This paper presents a CORBA-based Distributed Resource Navigation system consisting of Resource Agents and Navigation Service. The former one is a middleware that provides applications with a uniform set of operations to access heterogeneous distributed storage resources in...
متن کاملIntegrating PMI services in CORBA Applications
Application-level access control is an important requirement in many distributed environments. For instance, in new scenarios such as e-commerce, access to resources by previously unknown users is an essential problem to be solved. The integration of Privilege Management Infrastructure (PMI) services in the access control system represents a scalable way to solve this problem. Within the CORBA ...
متن کاملDesign and Implementation of a Leasing Service for CORBA-based Applications – Extended Web Version
The leasing concept enjoys increasing popularity in the context of distributed systems – a prime example for this is Jini. In this paper, we present a service that realises the leasing concept for the CORBA environment. We discuss various resource management techniques with regard to CORBA and detail their advantages and disadvantages. The focus of this work, however, is the description of the ...
متن کاملRole-based Security for Configurable Distributed Control Systems
The Common Object Request Broker Architecture (CORBA) is the most successful representative of an object-based distributed computing architecture. Although CORBA simplifies the implementation of complex, distributed systems significantly, the support of techniques for reliable, fault-tolerant, and secure software is very limited in the state-of-the-art CORBA. Extensions, such as the CORBAsec sp...
متن کاملA distributed resource controller for QoS applications
The Distributed Resource Controller (DRC) technology described in this paper provides a novel approach to interfacing applications with emerging network mechanisms to deliver Quality of Service (QoS) and controlling network resource utilization. DRC aims to unify network services (e.g., Diffserv, Intserv, and ATM) and application QoS provisioning by introducing a middleware system and a set of ...
متن کامل