Computer Science (Jan 2002)
Security Problem of Communication in CORBA System
Abstract
CORBA standard defines the mechanisms of shearing services. The key rule plays ORB (Object Request Broker) which enables location of suitable server and transparent communication between client and server: This paper presents problems connected with security during communication between ORB systems. In the CORBA system the objects are identified by IOR (Interoperable Object Reference). For T CP/IP it contains IP server address, port and object key. Filtration may use such information as: type of communicate, IP address of client, object key to which client wants to access, type of operation, clients principal. In proposed implementation the firewall works as CORBA server and cooperates with half bridge. It is registered in ORB system and provides the controlling functions for entering packages by IDL interface. In the paper also the structure of filtering module is presented. Its main part is ACL (Access Control Lisa with rules of access. The performance evaluation results are also presented.
