IRIS

This work demonstrates the use of CORBA portable interceptors in the implementation of a security wrapper for a security unaware application. The fundamental advantage of interceptor-based approaches is the separation of security-oriented logic from business-oriented logic, which ultimately results in enhanced extensibility and reusability of security related components. The paper presents the design of an interceptor-based security wrapper which provides strong authentication to a security unaware application, and discusses its implementation on top of a IONA ORBIX 2000-based platform. The authentication procedure relies on a challenge-response protocol, which uses X509 digital certificates. The performance penalty due to the execution of cryptographic functions is evaluated and discussed.

Using CORBA Interceptors to Implement a Security Wrapper / Cotroneo, Domenico; Mazzeo, Antonino; L., Romano; Russo, Stefano. - ELETTRONICO. - (2002), pp. 53-57. (Intervento presentato al convegno SSGRR (Scuola Superiore G. Reiss Romoli) Annual Conference tenutosi a L'Aquila, Italy nel Agosto 2002).

Using CORBA Interceptors to Implement a Security Wrapper

COTRONEO, DOMENICO;MAZZEO, ANTONINO;RUSSO, STEFANO
2002

Abstract

This work demonstrates the use of CORBA portable interceptors in the implementation of a security wrapper for a security unaware application. The fundamental advantage of interceptor-based approaches is the separation of security-oriented logic from business-oriented logic, which ultimately results in enhanced extensibility and reusability of security related components. The paper presents the design of an interceptor-based security wrapper which provides strong authentication to a security unaware application, and discusses its implementation on top of a IONA ORBIX 2000-based platform. The authentication procedure relies on a challenge-response protocol, which uses X509 digital certificates. The performance penalty due to the execution of cryptographic functions is evaluated and discussed.
2002
Using CORBA Interceptors to Implement a Security Wrapper / Cotroneo, Domenico; Mazzeo, Antonino; L., Romano; Russo, Stefano. - ELETTRONICO. - (2002), pp. 53-57. (Intervento presentato al convegno SSGRR (Scuola Superiore G. Reiss Romoli) Annual Conference tenutosi a L'Aquila, Italy nel Agosto 2002).
4.1 Articoli in Atti di convegno
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11588/192459
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact