A Formal Analysis of the CORBA Security Service
ZB '02 Proceedings of the 2nd International Conference of B and Z Users on Formal Specification and Development in Z and B
Access control with IBM Tivoli access manager
ACM Transactions on Information and System Security (TISSEC)
On the benefits of decomposing policy engines into components
ARM '04 Proceedings of the 3rd workshop on Adaptive and reflective middleware
Information systems resources and information security
Information Systems Frontiers
| Hi-index | 0.00 |
Integration of security and object-oriented techniques is critical for the successful deployment of distributed object systems. The CORBA Security services, first published in December of 1995 by the Object Management Group, is a detailed specification of how to handle security in object systems that conform to the Object Management Architecture. This article provides a rigorous definition of the authorization part of CORBA Security. Its semantics is given in terms of an access control matrix. The dependencies among the authorization elements are analyzed and possible interpretations for access control decision functions are given. The expressivity of the authorization model to define a wide range of policies, in particular mandatory access control, is discussed.