Research output: Contribution to conference - Without ISBN/ISSN › Conference paper › peer-review
Research output: Contribution to conference - Without ISBN/ISSN › Conference paper › peer-review
}
TY - CONF
T1 - The Role of Reflective Middleware in Supporting Flexible Security Policies
AU - Xu, N.
AU - Blair, Gordon S.
AU - Myrvang, P. H.
AU - Stabell-Kulø, T.
AU - Grace, P.
PY - 2006/9
Y1 - 2006/9
N2 - Next generation middleware must support applications in the face of increasing diversity in interaction paradigms, end system types and network styles. Therefore, to secure applications, flexible security policies must be configured and indeed reconfigured at runtime. In this paper, we propose an approach combining the openness of reflective middleware with the flexibility of programmable security to meet such demands. In particular, we build a security architecture based on the Gridkit reflective middleware platform and the Obol security protocol programming language. The paper then describes a case study that uses flexible policies in order to secure remote procedure calls and secure group communication. We also evaluate this approach in terms of its security properties, flexibility, ease of use and extensibility.
AB - Next generation middleware must support applications in the face of increasing diversity in interaction paradigms, end system types and network styles. Therefore, to secure applications, flexible security policies must be configured and indeed reconfigured at runtime. In this paper, we propose an approach combining the openness of reflective middleware with the flexibility of programmable security to meet such demands. In particular, we build a security architecture based on the Gridkit reflective middleware platform and the Obol security protocol programming language. The paper then describes a case study that uses flexible policies in order to secure remote procedure calls and secure group communication. We also evaluate this approach in terms of its security properties, flexibility, ease of use and extensibility.
KW - cs_eprint_id
KW - 1733 cs_uid
KW - 361
M3 - Conference paper
SP - 97
EP - 112
T2 - NODe 2006: Objects, Aspects, Services, the Web
Y2 - 1 January 1900
ER -