Preview "Developing Secure Distributed Systems with CORBA" in a new window.

Developing Secure Distributed Systems with CORBA

Authors

Book Description

This new book is a clearly written, well structured guide to building secure distributed applications with CORBA. It helps securing CORBA applications, integrating security infrastructure with CORBA applications, and evaluating the security effectiveness of distributed applications. You get a comprehensive study of the CORBA security architecture, providing you with a better understanding of its goals and limitations. It serves as your complete reference for understanding security in distributed systems.

The book also generously illustrates the usage of theMICOSec CORBA security services implementation, including important informationon the installation and configuration of MICOSec, the usage of two differentkinds of application-facing interfaces, and the configuration of CORBA securityfor applications that do not contain any security-related modifications.

Contents:

Part I: CORBA Security

Introduction to CORBA -- Why CORBA? The Object ManagementGroup (OMG). The Object Management Architecture (OMA). The Common ObjectRequest Broker Architecture (CORBA). How does it all work together?

Creating and Running an Example Application

The Security Basics -- What is Security? Why Security?Aspects of Security within CORBA. Security Management. Threats,Vulnerabilities, Countermeasures. Middleware Security

The CORBA Security Architecture -- Design Goals. ArchitecturalComponents. Secure CORBA on the Internet. Conformance. Features or Wish List?

Part II: MICOSec

Getting Started with MICOSec -- Free Software. MICOInstallation. MICOSec Installation

Security Level 1 -- Level 1 Functionality. Level 1Interface. A Security-Aware Bank Application Example. Implementation Overviewand Conformance.

Security Level 2 -- Level 2 Functionality Overview.Principal Authentication and Secure Association.

Object Domain Mapper for Access Control and Audit. AccessControl. Security Auditing. Delegation.

Implementation Overview and Conformance

Security-Unaware Functionality -- Security-UnawareFunctionality Overview. Principal Authentication and Secure Association. ObjectDomain Mapping. Access Control. Security Auditing. Delegation. ImplementationOverview and Conformance

Ulrich Lang, a researcher at the University of CambridgeComputer Laboratory, co-founder and Research Director of ObjectSecurity Ltd.,received his M.Sc. in Information Security from Royal Holloway College, at theUniversity of London. Before that, he studied computer science with managementat the Ludwig-Maximilians-Universität in Munich, Germany.

Rudolf Schreiner, co-founder and Chief Technology Officer ofObjectSecurity Ltd., a consultancy specialized in distributed systems security,received his Dipl.-Phys. from Ludwig-Maximilians-Universität in Munich(Germany) in 1993. Before his career at ObjectSecurity Ltd., he worked as afreelance programmer and consultant on various computer security projects.

In The Press

About the Author

Read on Your Favourite Devices

to find out more

Ebook Permissions

to find out more

About this Ebook

File formats
This ebook is available in:
The publisher has not yet supplied format information.
Pre-order formats shown are based on publisher intent and may change before release.
File sizes shown are an approximation. The actual download size will vary based on the application you use to read the book.
Publisher
Published
; Copyright:
ISBNs
Title
Series
Author
;
Edition
Imprint
Language
Number of Pages
Page count shown is an approximation provided by the publisher. The actual page count will vary based on various factors such as your device's screen size and font-size.