Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Middleware >> CORBA
  2. Suggest New Category

How does CORBA security affect application writers?

Question Posted / rithi

Answer Posted / rithi

Linda Gricius (March, 1998):

In a secure CORBA system, the same client calls the same
target object that it would call in an unsecured system. The
invocation request is intercepted by the ORB Security
service at both client and target, and the level of
protection required by the current policy settings is
applied. Security may be enforced at the client side, the
target side, or both. This includes support for any or all
of the following:

* Establishing secure associations between the client
and target;
* Integrity and/or confidentiality protection for
individual requests and replies sent between the client and
target;
* Access control checks to determine if the principal is
allowed to perform this operation on the target object;
* Auditing of security-relevant events.

Since the invocation is intercepted in the ORB, it is
transparent to the application. However, applications that
want to enforce their own security controls can call on the
Security services directly.

It's important to note that object implementations do not
need to be changed to fit into and be protected by a secure
ORB. A distributed application may be made up of many small
objects, and it is unusual for all the application
developers to be sufficiently security knowledgeable to make
the right calls on the security facilities.

Is This Answer Correct ?    0 Yes 0 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

What is corba good for?

941

Can corba application be multi-threaded?

892

Explain are there different threading models that can be used within corba servers?

850

How does corba support interoperability?

873

Explain how does corba support interoperability?

911

Does corba supports asynchronous communication?

871

How to come up with application security design using CORBA Security service?

2529

What is the reason to implement corba in client application application?

856

Explain can corba application have call back?

1023

Explain are the different threading models that can be used within corba servers?

873

What about CSI with SSL?

2479

Does the existing Authorization Service of CORBASec scale in a "well" distributed-object environment?

2580

What are the shortcomings of CORBA Security service?

2103

Explain does corba define high level application architectures?

872

What is corba? What does it do?

943