Title

Practical delegation for secure distributed object environments

Author

Nataraj Nagaratnam, Syracuse University

Date of Award

1998

Degree Type

Dissertation

Degree Name

Doctor of Philosophy (PhD)

Department

Electrical Engineering and Computer Science

Advisor(s)

Garth Foster

Keywords

Security framework, Delegation, Distributed object

Subject Categories

Computer Sciences

Abstract

In distributed object environments, intermediate objects hide the details of complex system interactions. These intermediate objects receive high level requests from client objects and perform a series of operations on a number of other object services. All requests arriving at the target services appear to be the action of the intermediary rather than the true initiator. The inability to determine the true initiator of a request has a chilling effect on the design of distributed object systems.

Delegation is the process whereby a principal in a distributed object environment authorizes another principal to access services and resources on its behalf. Even with the state-of-the-art authentication techniques, delegation is typically implicit and transparent to the remote services, making it difficult for those services to determine whether delegation was authorized by the initiator.

We have developed an architectural framework for structuring secure remote method invocations that may involve chains of delegated calls across distributed objects. SDM is a Secure Delegation Model for Java-based distributed object environments. SDM builds upon existing mechanisms, mainly those already established in the Java JDK1.2 security framework, to establish a practical basis for constructing flexible yet secure components and support infrastructure. The framework supports a control API for application developers to specify mechanisms and security policies surrounding simple or cascaded delegation. Delegation may also be disabled and optionally revoked.

Access

Surface provides description only. Full text is available to ProQuest subscribers. Ask your Librarian for assistance.

Recommended Citation

Nagaratnam, Nataraj, "Practical delegation for secure distributed object environments" (1998). Electrical Engineering and Computer Science - Dissertations. 163.
https://surface.syr.edu/eecs_etd/163

http://libezproxy.syr.edu/login?url=http://proquest.umi.com/pqdweb?did=732513151&sid=1&Fmt=2&clientId=3739&RQT=309&VName=PQD