公开(公告)号：WO2004027612A2

公开(公告)日：2004-04-01

申请号：PCT/GB0304063

申请日：2003-09-19

Applicant: IBM ,  IBM UK

Inventor： BIRK PETER ,  CHAO CHING-YUN ,  CHUNG HYEN ,  MASON CARLTON ,  REDDY AJAYKUMAR ,  VENKATARAMAPPA VISHWANATH

IPC: G06F9/46 ,  G06F21/00 ,  H04L9/00

CPC classification number: G06F21/31

Abstract: Objects on application servers may be defined into classes which receive different levels of security protection, such as definition of user objects and administrative objects. Domain-wide security may be enforced on administrative objects, which user object security may be configured separately for each application server in a domain. In a CORBA architecture, IOR's for shared objects which are to be secured on a domain-wide basis, such as administrative objects, are provided with tagged components during IOR creation and exporting to a name server. Later, when the IOR is used by a client, the client invokes necessary security measures such as authentication, authorization and transport protection according to the tagged components.

Abstract translation: 应用程序服务器上的对象可以定义为接收不同级别安全保护的类，例如用户对象和管理对象的定义。 可以对管理对象实施域范围的安全性，可以为域中的每个应用程序服务器单独配置用户对象安全性。 在CORBA体系结构中，在IOR创建和导出到名称服务器期间，为管理对象等整个域范围内的受保护共享对象（例如管理对象）提供IOR。 稍后，当IOR被客户端使用时，客户端根据标记的组件调用必要的安全措施，例如验证，授权和传输保护。

公开(公告)号：AT441150T

公开(公告)日：2009-09-15

申请号：AT03750943

申请日：2003-09-19

Applicant: IBM

Inventor： BIRK PETER ,  CHAO CHING-YUN ,  CHUNG HYEN ,  MASON CARLTON ,  REDDY AJAYKUMAR ,  VENKATARAMAPPA VISHWANATH

IPC: G06F9/46 ,  G06F21/00 ,  H04L9/00

Abstract: Objects on application servers are distributed to one or more application servers; a user is allowed to declare in a list which objects residing on each application server are to be protected; the list is read by an interceptor; responsive to exportation of a Common Object Request Broker Architecture (“CORBA”) compliant Interoperable Object Reference (“IOR”) for a listed object, the interceptor associates one or more application server security flags with interfaces to the listed objects by tagging components of the IOR with one or more security flags; and one or more security operations are performed by an application server according to the security flags tagged to the IOR when a client accesses an application server-stored object, the security operations including an operation besides establishing secure communications between the client process and the server-stored object.

公开(公告)号：DE60329002D1

公开(公告)日：2009-10-08

申请号：DE60329002

申请日：2003-09-19

Applicant: IBM

Inventor： BIRK PETER ,  CHAO CHING-YUN ,  CHUNG HYEN ,  MASON CARLTON ,  REDDY AJAYKUMAR ,  VENKATARAMAPPA VISHWANATH

IPC: G06F9/46 ,  G06F21/00 ,  H04L9/00

Abstract: Objects on application servers are distributed to one or more application servers; a user is allowed to declare in a list which objects residing on each application server are to be protected; the list is read by an interceptor; responsive to exportation of a Common Object Request Broker Architecture (“CORBA”) compliant Interoperable Object Reference (“IOR”) for a listed object, the interceptor associates one or more application server security flags with interfaces to the listed objects by tagging components of the IOR with one or more security flags; and one or more security operations are performed by an application server according to the security flags tagged to the IOR when a client accesses an application server-stored object, the security operations including an operation besides establishing secure communications between the client process and the server-stored object.

公开(公告)号：AU2003269163A1

公开(公告)日：2004-04-08

申请号：AU2003269163

申请日：2003-09-19

Applicant: IBM

Inventor： CHAO CHING-YUN ,  CHUNG HYEN ,  MASON CARLTON ,  REDDY AJAYKUMAR ,  VENKATARAMAPPA VISHWANATH ,  BIRK PETER

IPC: G06F9/46 ,  G06F21/00 ,  H04L9/00

Abstract: Objects on application servers are distributed to one or more application servers; a user is allowed to declare in a list which objects residing on each application server are to be protected; the list is read by an interceptor; responsive to exportation of a Common Object Request Broker Architecture (“CORBA”) compliant Interoperable Object Reference (“IOR”) for a listed object, the interceptor associates one or more application server security flags with interfaces to the listed objects by tagging components of the IOR with one or more security flags; and one or more security operations are performed by an application server according to the security flags tagged to the IOR when a client accesses an application server-stored object, the security operations including an operation besides establishing secure communications between the client process and the server-stored object.