Integrating PMI Services in CORBA Applications

TitleIntegrating PMI Services in CORBA Applications
Publication TypeJournal Article
Year of Publication2003
AuthorsJ. Lopez, A. Mana, J. J. Ortega, J. M. Troya, and M. I. Yague
JournalComputer Standards & Interfaces
ISSN Number0920-5489

Application-level access control is an important requirement in many distributed environments. For instance, in new scenarios such as e-commerce, access to resources by previously unknown users is an essential problem to be solved. The integration of Privilege Management Infrastructure (PMI) services in the access control system represents a scalable way to solve this problem. Within the CORBA standards, the Resource Access Decision (RAD) facility is a mechanism used by security-aware applications to obtain authorization decisions and to manage access decision policies. This paper presents PMI-RAD, an approach to integrate the services of an external PMI into CORBA applications using the RAD facility. In particular, the integration of the external PMI in the access control system is based on the semantic description of the PMI services. Our RAD implementation requests and verifies attribute certificates from the PMI in a transparent way for CORBA objects.

Citation KeyJavierLopez2003c
Paper File: