A wide-area Distribution Network for free software
ACM Transactions on Internet Technology (TOIT)
Design and implementation of a secure wide-area object middleware
Computer Networks: The International Journal of Computer and Telecommunications Networking
Guarding security sensitive content using confined mobile agents
Proceedings of the 2007 ACM symposium on Applied computing
Proceedings of the 2008 workshop on Middleware security
EGSI: TGKA Based Security Architecture for Group Communication in Grid
CCGRID '10 Proceedings of the 2010 10th IEEE/ACM International Conference on Cluster, Cloud and Grid Computing
SP'04 Proceedings of the 12th international conference on Security Protocols
| Hi-index | 0.00 |
Large-scale distributed systems present numerous securityproblems not present in local systems. In this paperwe present a general security architecture for a large-scaleobject-based distributed system. Its main features includeways for servers to authenticate clients, clients to authenticateservers, new secure servers to be instantiated withoutmanual intervention, and ways to restrict which client canperform which operation on which object. All of these featuresare done in a platform- and application-independentway, so the results are quite general. The basic idea behindthe scheme is to have each object owner issue cryptographicallysealed certificates to users to prove which operationsthey may request and to servers to prove which operationsthey are authorized to execute. These certificates are usedto ensure secure binding and secure method invocation. Thepaper discusses the required certificates and security protocolsfor using them.