1.
|
Analysis of ANSI RBAC Support in Commercial Middleware
/ Wesam M. Darwish
[LERSSE-THESIS-2009-001]
This thesis analyzes the access control architectures of three middleware technologies: Common
Object Request Broker Architecture (CORBA), Enterprise Java Beans (EJB), and Component
Object Model (COM+) [...]
Published in Wesam M. Darwish, "Analysis of ANSI RBAC Support in Commercial Middleware," Master thesis, Department of Electrical and Computer Engineering, THE UNIVERSITY OF BRITISH COLUMBIA, April, 2009, pp.124. :
Transfer from CDS 0.99.7: PDF;
|
2.
|
Support for ANSI RBAC in CORBA
/ Konstantin Beznosov ; Wesam Darwish
[LERSSE-REPORT-2007-019]
We describe access control mechanisms of the Common Ob ject Request Broker Architecture (CORBA) and define a configuration of the CORBA protection system in more precise and less ambiguous language than the CORBA Security specification (CORBASec). [...]
Published in Konstantin Beznosov, Wesam Darwish "Support for ANSI RBAC in CORBA," Laboratory for Education and Research in Secure Systems Engineering, Vancouver, Canada, University of British Columbia, technical report LERSSE-TR-2007-01, 26 July, 2007, pp.42.:
Transfer from CDS 0.99.7: PDF;
|
3.
|
Resource Access Decision Service for CORBA-based Distributed Systems
/ Konstantin Beznosov ; Yi Deng ; Bob Blakley ; Carol Burt ; et al
[LERSSE-PRESENTATION-2006-051]
Decoupling authorization logic from application logic allows applications with fine-grain access control requirements to be independent from a particular access control policy and from factors that are used in authorization decisions as well as access control models, no matter how dynamic those polices and factors are [...]
Published in Barkley, "A Resource Access Decision Service for CORBA-based Distributed
Systems," presented at the Annual Computer Security Applications Conference
(ACSAC), Phoenix, Arizona, U.S.A., 10 December, 1999, pp.13. :
Transfer from CDS 0.99.7: PDF;
|
4.
|
Update on Security Domain Membership RFP Proposal
/ Konstantin Beznosov ; Tadashi Kaji
[LERSSE-PRESENTATION-2005-048]
Presentation explains structural design proposed by the SDMM proposal, as it was standing on December 2000..
Published in Konstantin Beznosov, Tadashi Kaji, "Update on Security Domain Membership RFP Proposal," presented to the OMG ORB/OS PTF, OMG docuement orbos/00-12-07, 12 December, 2000, pp.23. :
Transfer from CDS 0.99.7: PDF;
|
5.
|
Upcoming OMG HealthCare Resource Access Control Facility
/ Konstantin Beznosov
[LERSSE-PRESENTATION-2005-047]
Outline: • CORBA in 5 minutes • CORBA security model • Why HRAC • HRAC concepts • HRAC framework design • Work status
Published in Konstantin Beznosov, "Upcoming OMG HealthCare Resource Access Control Facility," presentation on Resource Access Decision facility given to SIG Secure at HL7 meeting, Orlando, FL, USA, SIG Secure, HL7, 26 January, 1999, pp.14.:
Transfer from CDS 0.99.7: PDF;
|
6.
|
Supporting Relationships in Access Control Using Role Based Access Control
/ John Barkley ; Konstantin Beznosov ; Jinny Uppal ; John Barkley ; et al
[LERSSE-RefConfPaper-2005-014]
The Role Based Access Control (RBAC) model and mechanism have proven to be useful and effective. [...]
Published in Proceedings of the Fourth ACM Workshop on
Role-Based Access Control, Fairfax, Virginia, USA: (October, 1999) pp. 55-65
Transfer from CDS 0.99.7: PDF;
|
7.
|
Performance Considerations for a CORBA-based Application Authorization Service
/ Konstantin Beznosov ; Luis Espinal ; Yi Deng
[LERSSE-RefConfPaper-2005-012]
Resource Access Decision (RAD) Service allows separation of authorization from application functionality in distributed application systems by providing a logically centralized authorization control mechanism. [...]
Published in Proceedings of IASTED International Conference
Software Engineering and Applications, Las Vegas, Nevada: (November, 2000)
Transfer from CDS 0.99.7: PDF;
|
8.
|
Object Security Attributes: Enabling Application-specific Access Control in Middleware
/ Konstantin Beznosov
[LERSSE-PRESENTATION-2005-030]
This presentation makes two primary contributions toward establishing support for application-specific factors in middleware security mechanisms. [...]
Published in Konstantin Beznosov, "Object Security Attributes: Enabling Application-specific Access Control in Middleware," presented at the 4th International Symposium on Distributed Objects Applications (DOA), Irvine, California, 29 October, 2002. :
Transfer from CDS 0.99.7: PDF;
|
9.
|
Object Security Attributes: Enabling Application-specific Access Control in Middleware
/ Konstantin Beznosov
[LERSSE-RefConfPaper-2005-011]
This paper makes two primary contributions toward establishing support for application-specific factors in middleware security mechanisms. [...]
Published in Proceedings of 4th International Symposium on
Distributed Objects and Applications (DOA), Irvine,
California: (October 28 - November 1, 2002) pp. 693-710
Transfer from CDS 0.99.7: PDF;
|
10.
|
Middleware and Web Services Security
/ Konstantin Beznosov
[LERSSE-PRESENTATION-2005-028]
Challenges of designing secure distributed applications are due to distribution, scale and object orientation. [...]
Published in Konstantin Beznosov, "Middleware and Web Services Security," tutorial given at JavaPolis University, Antwerp, Belgium, Belgium Java Users Group, 14 December, 2004. :
Transfer from CDS 0.99.7: PDF;
|