REVIEW: "Developing Secure Distributed Systems with CORBA", Ulrich Lang/Rudolf Schreiner

  Rob, grandpa of Ryan, Trevor, Devon & Ha
    BKDSDSCO.RVW 20031201 Developing Secure Distributed Systems with CORBA , Ulrich Lang/Rudolf Schreiner, 2002, 1-58053-295-0, U$69.00/C$106.95
    Message 1 of 1 , Feb 26, 2004
      Chapter one is an introduction, but it very quickly gets into CORBA
      (Common Object Request Broker Architecture) jargon, and C++ API calls.
      The explanations could be written with more clarity for outsiders.
      Security is first defined, in chapter two, in terms of restricting
      access, but the authors are not clear about whether they are primarily
      concerned with integrity or confidentiality. The material then goes
      on to a good overview of security management basics and a very brief
      outline of some security concerns in the CORBA environment. The lead-
      in to the CORBA security architecture, in chapter three, is a lengthy
      discussion of the benefits of flexibility, abstraction, and
      simplicity: the authors then note that the CORBA architecture is not
      simple. MICO, an open source CORBA compliant object request broker,
      has a security component (MICOsec), and chapter four is dedicated
      mostly to installation instructions. Chapter five looks at
      programming CORBA level one security, using MICOsec and C++, while
      chapter six takes a longer look at the more complex level two
      requirements. CORBA security does have support for applications that
      do not contain any security provisions (a rather interesting concept),
      and these are reviewed in chapter seven.

      CORBA security is not widely understood, and this work can assist both
      those needing a conceptual idea of the system and those needing to
      program with it.

      copyright Robert M. Slade, 2003 BKDSDSCO.RVW 20031201

