| Currently, distributed systems are increasingly applied to various fields and industries. The security of Distributed Object Technology,which is a main supporting technology of distributed system,is always a focus of research in the field of the application of distributed system. On the one hand, Distributed systems is faced with more than the traditional system of security risk as a result of their own networking and isomerization. On the other hand, with the depth of information, distributed system security requirements are also increasing, which has become a new challenge to the traditional security model and mechanisms of distributed object system. It is important and pratical research project to solve the security problem inclusive of identify authentication,delegation and access control in such complex environment. Therefore, it is necessary to provide some mechanism for the distributed system to implement different security policies.Safety design principles can often be implemented in the following aspects:encryption, access control and authentication, etc..CORBA is proposed for solving the interconnection of the hardware and software in heterogeneous environment. CORBA is a standard and offer numerous services for distributed systems. CORBA security mechanisms, system and security policy provide a Indemnity for distributed application. CORBA security services can solve the security problems of distributed systems.This article firstly analyzes the background of this research subject and analyze the present research circumstances at home and abroad. After introducing CORBA technology and CORBA security service in detail, with the current design principles of distributed system security, we propose a security mechanism based on CORBA. This article achieve the security of the system from the security attributes and access control strategy.Firstly, based on the CORBA security services architecture,Using CORBA security intercept mechanisms and security structure of the object call, it can effectively describe the use of security mechanism and encryption and decryption algorithms, then combine the CORBA access control and encryption technology strategy to achieve the security.Specifically, this article achieve it from the interceptor technology and security properties of context. This paper gives a brief context of the security properties of the establishment and validation of algorithms, and gives the implementation framework of the security properties of services based on interceptor technology.After introducing the access control policy and its implementation, from the security attributes and access control strategy. It protects electronic banking transactions online information and achieve its integrity and confidentiality from the security attributes and access control strategy. |
PDF Full Text Request