A Language for Access Control in CORBA
ثبت نشده
چکیده
In this brief paper, I present the a simple straight forward formal language for describing access control based on the CORBA Security Credentials model. This language serves as a formal description of the access control mechanism. I also show how the language can be extended to describe the CORBA Security access control model that uses the notion of required rights, which is more complex, yet yields a more manageable description of the access decision. I also show that the more complex description can be reduced to the simpler form of the language and the reduction yields better performance and paths for further optimization of the access decision.
منابع مشابه
Towards an Access Control Policy Speciication Language for Corba
Specifying and managing access control policies for large distributed systems is a non{ trivial task. Commonly, access control policies are speciied in natural language and later reformulated in terms of a particular access control mechanism. Management of policies is thus done in terms of low{level constructs rather than in terms of the speciication. This paper presents and discusses concepts ...
متن کاملSupport for ANSI RBAC in CORBA
We describe access control mechanisms of the Common Object Request Broker Architecture (CORBA) and define a configuration of the CORBA protection system in more precise and less ambiguous language than the CORBA Security specification (CORBASec). Using the configuration definition, we suggest an algorithm that formally specifies the semantics of authorization decisions in CORBA. We analyze supp...
متن کاملRole-Based Access Control for CORBA Distributed Object Systems
This paper shows how role-based access control (RBAC) models can be implemented in distributed object-based systems that follow OMG/CORBA standards. We introduce a novel approach that provides for automatic role activation by the security components of the middleware, which brings role-based access control to security-unaware applications.
متن کاملRole-based Security for Configurable Distributed Control Systems
The Common Object Request Broker Architecture (CORBA) is the most successful representative of an object-based distributed computing architecture. Although CORBA simplifies the implementation of complex, distributed systems significantly, the support of techniques for reliable, fault-tolerant, and secure software is very limited in the state-of-the-art CORBA. Extensions, such as the CORBAsec sp...
متن کاملIntegrating Security Policy Design into the Software Development Process Technical Report B – 01 – 06
Security is an integral part of most modern software systems, but it is still not considered as an explicit part in the development process. Security mechanisms and policies are generally added to existing systems as an afterthought, with all the problems of unsatisfied security requirements, integration difficulties, and mismatches between design models. We propose to integrate the design of a...
متن کامل