Basic Security Concepts

1/30/99


Click here to start


Table of Contents

Basic Security Concepts

Cryptographic Messages (as defined by PKCS#7)

Data

Encrypted data

Digested data

Signed data

Enveloped data

Signed-and-Enveloped data

Signed-and-Enveloped ...

Signed-and-Enveloped ...

Signer public key

Keberos

Keberos: Secret Keys

TGT: Ticket-Granting Ticket

Service Ticket

Service Request

Server Side Processing

Mutual Authentication

Transaction

GSS-API Generic Security Service Application Program Interface

Goals

Four Stages to Using the GSSAPI

Credentials

Security Context

Per-message services

GSSAPI calls

Language bindings

Mechanisms

Simple Public-Key GASS-API Mechanism (SPKM)

CORBA Security Service

Distributed Objects are less secure

Summary of Key Security Features

Conformance to CORBA Security

Security Policies

Security Reference Model

Meta-policy

CORBA security is built into ORB

Authentication

Privilege Delegation

CORBA access model

More ...

Orbacus implementation

Author: Tomasz Haupt

Email: gcf@npac.syr.edu

Home Page: http://www.npac.syr.edu