Integrating PMI services in CORBA applications

Authors:
Javier López;Antonio Maña;Juan J. Ortega;José M. Troya;Mariemma I. Yagüe
Affiliations:
Computer Science Department, University of Málaga, Bulevard Louis Pasteur s/n, Málaga 29017, Spain;Computer Science Department, University of Málaga, Bulevard Louis Pasteur s/n, Málaga 29017, Spain;Computer Science Department, University of Málaga, Bulevard Louis Pasteur s/n, Málaga 29017, Spain;Computer Science Department, University of Málaga, Bulevard Louis Pasteur s/n, Málaga 29017, Spain;Computer Science Department, University of Málaga, Bulevard Louis Pasteur s/n, Málaga 29017, Spain
Venue:
Computer Standards & Interfaces - CORBA: protocols, applications, process models and standards
Year:
2003

Citing 10
Cited 4

Role-Based Access Control Models

Computer
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Securing XML Documents with Author-X

IEEE Internet Computing
XML-Based Distributed Access Control System

EC-WEB '02 Proceedings of the Third International Conference on E-Commerce and Web Technologies
Authorization in CORBA Security

ESORICS '98 Proceedings of the 5th European Symposium on Research in Computer Security
Secure Content Distribution for Digital Libraries

ICADL '02 Proceedings of the 5th International Conference on Asian Digital Libraries: Digital Libraries: People, Knowledge, and Technology
A Resource Access Decision Service for CORBA-Based Distributed Systems

ACSAC '99 Proceedings of the 15th Annual Computer Security Applications Conference
SESAME V2 public key and authorisation extensions to Kerberos

SNDSS '95 Proceedings of the 1995 Symposium on Network and Distributed System Security (SNDSS'95)
Verifiable Identifiers in Middleware Security

ACSAC '01 Proceedings of the 17th Annual Computer Security Applications Conference
Certificate-based access control for widely distributed resources

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8

X-RDR: a role-based delegation processor for web-based information systems

ACM SIGOPS Operating Systems Review
A flexible delegation processor for web-based information systems

Computer Standards & Interfaces
Semantic access control model: a formal specification

ESORICS'05 Proceedings of the 10th European conference on Research in Computer Security
A semantic approach for access control in web services

EuroWeb'02 Proceedings of the 2002 international conference on EuroWeb

Quantified Score

Hi-index	0.00

Visualization

Abstract

Application-level access control is an important requirement in many distributed environments. For instance, in new scenarios such as e-commerce, access to resources by previously unknown users is an essential problem to be solved. The integration of Privilege Management Infrastructure (PMI) services in the access control system represents a scalable way to solve this problem. Within the CORBA standards, the Resource Access Decision (RAD) facility is a mechanism used by security-aware applications to obtain authorization decisions and to manage access decision policies. This paper presents PMIRAD, an approach to integrate the services of an external PMI into CORBA applications using the RAD facility. In particular, the integration of the external PMI in the access control system is based on the semantic description of the PMI services. Our RAD implementation requests and verifies attribute certificates from the PMI in a transparent way for CORBA objects.