Basic Security Concepts
Cryptographic Messages(as defined by PKCS#7)
Data
Encrypted data
Digested data
Signed data
Enveloped data
Signed-and-Enveloped data
Signed-and-Enveloped ...
Signer public key
Keberos
Keberos: Secret Keys
TGT: Ticket-Granting Ticket
Service Ticket
Service Request
Server Side Processing
Mutual Authentication
Transaction
GSS-APIGeneric Security ServiceApplication Program Interface
Goals
Four Stages to Using the GSSAPI
Credentials
Security Context
Per-message services
GSSAPI calls
Language bindings
Mechanisms
Simple Public-Key GASS-API Mechanism(SPKM)
CORBA Security Service
Distributed Objects are less secure
Summary of Key Security Features
Conformance to CORBA Security
Security Policies
Security Reference Model
Meta-policy
CORBA security is built into ORB
Authentication
Privilege Delegation
CORBA access model
More ...
Orbacus implementation
Email: gcf@npac.syr.edu
Home Page: http://www.npac.syr.edu