|
Overview
of CORBA Services
Security
Service
The security functionality
defined by this specification comprises:
• Identification and
authentication of principals (human users and objects which need to
operate under their own rights) to verify they are who they claim to be.
• Authorization and
access control - deciding whether a principal can access an object,
normally using the identity and/or other privilege attributes of the principal
(such as role, groups, security clearance) and the control attributes of the
target object (stating which principals, or principals with which attributes)
can access it.
• Security auditing to
make users accountable for their security related actions. It is normally the
human user who should be accountable. Auditing mechanisms should be able to
identify the user correctly, even after a chain of calls through many objects.
• Security of
communication between
objects, which is often over insecure lower layer communications. This requires
trust to be established between the client and target, which may require authentication
of clients to targets and authentication of targets to clients. It
also requires integrity protection and (optionally)
confidentiality
protection of
messages in transit between objects.
• Non-repudiation provides
irrefutable evidence of actions such as proof of origin of data to the
recipient, or proof of receipt of data to the sender to protect against
subsequent attempts to falsely deny the receiving or sending of the data.
• Administration of
security information (for example, security policy) is also needed.
Object
Trader Service
The Object Trader Service
provides a matchmaking service for objects.
The Service Provider
registers the availability of the service by invoking an export operation on the
trader, passing as parameters information about the offered service. The export
operation carries an object reference that can be used by a client to invoke
operations on the advertised services, a description of the type of the offered
service (i.e., the names of the operations to which it will respond, along with
their parameter and result types), information on the distinguishing attributes
of the offered service. The offer space managed by traders may be partitioned to
ease administration and navigation. This information is stored persistently by
the Trader. Whenever a potential client wishes to obtain a reference to a
service that does a particular job, it invokes an import
operation, passing as parameters a description of the service required. Traders
in different domains may be federated. Federation enables systems in different
domains to negotiate the sharing of services without losing control of their own
policies and services. A domain can thus share information with other domains
with which it has been federated, and it can now be searched for appropriate
service offers.
<<
BACK
|
