Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Lecture #12 Secure Object Systems.

Published byPearl Miles Modified over 8 years ago

Similar presentations

Presentation on theme: "Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Lecture #12 Secure Object Systems."— Presentation transcript:

1 Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Lecture #12 Secure Object Systems February 13, 2008

2 Outline l Background on object systems l Discretionary security l Multilevel security l Objects for modeling secure applications l Object Request Brokers l Secure Object Request Brokers l Secure frameworks l Directions

3 Concepts in Object Database Systems l Objects- every entity is an object - Example: Book, Film, Employee, Car l Class - Objects with common attributes are grouped into a class l Attributes or Instance Variables - Properties of an object class inherited by the object instances l Class Hierarchy - Parent-Child class hierarchy l Composite objects - Book object with paragraphs, sections etc. l Methods - Functions associated with a class

4 Example Class Hierarchy Document Class D1 D2 Book Subclass B1 # of Chapters Volume # Print-doc-att(ID) Method1 : Journal Subclass J1 Print-doc (ID) Method2: ID Name Author Publisher

5 Example Composite Object Composite Document Object Section 1 Object Section 2 Object Paragraph 1 Object Paragraph 2 Object

6 Security Issues l Access Control on Objects, Classes, Attributes etc. l Execute permissions on Methods l Multilevel Security l Security impact on class hierarchies l Security impact on composite hierarchies

7 Objects and Security Secure OOM Unified Object Model is Evolving Secure OODB Persistent data store Secure OODA Design and analysis Secure DOM Infrastructure Secure OOPL Programming language Secure Frameworks Business objects Secure OOT Technologies

8 Access Control

9 Access Control Hierarchies

10 Secure Object Relational Model

11 Policy Enforcement

12 Sample Systems

13 Multilevel Security

14 Some Security Properties l Security level of an instance must dominate the level of the class l Security level of a subclass must dominate the level of the superclass l Classifying associations between two objects l Method must execute at a level that dominates the level of the method

15 Multilevel Secure Object Relational Systems

16 Sample MLS Object Systems

17 Objects for Secure Applications

18 Object Modeling

19 Dynamic Model

20 Functional Model

21 UML and Policies

22 Distributed Object Management Systems l Integrates heterogeneous applications, systems and databases l Every node, database or application is an object l Connected through a Bus l Examples of Bus include - Object Request Brokers (Object Management Group) - Distributed Component Object Model (Microsoft)

23 Object-based Interoperability Object Request Broker Client Object Server Object Example Object Request Broker: Object Management Group’s (OMG) CORBA (Common Object Request Broker Architecture)

24 Javasoft’s RMI (Remote Method Invocation) RMI Business Objects Clients Java-based Servers

25 Objects and Security Secure OOM Unified Object Model is Evolving Secure OODB Persistent data store Secure OODA Design and analysis Secure DOM Infrastructure Secure OOPL Programming language Secure Frameworks Business objects Secure OOT Technologies

26 Secure Object Request Brokers

27 CORBA (Common Object Request Broker Architecture) Security l Security Service provides the following: - Confidentiality - Integrity - Accountability - Availability l URLs - http://www.javaolympus.com/J2SE/NETWORKING/CORBA/COR BASecurity.jsp http://www.javaolympus.com/J2SE/NETWORKING/CORBA/COR BASecurity.jsp - http://student.cosy.sbg.ac.at/~amayer/projects/corbasec/sec_ov erview.html http://student.cosy.sbg.ac.at/~amayer/projects/corbasec/sec_ov erview.html - www.omg.org www.omg.org

28 OMG Security Specifications

29 CORBA (Common Object Request Broker Architecture) Security l Security Service provides the following: - Confidentiality - Integrity - Accountability - Availability l URLs - http://www.javaolympus.com/J2SE/NETWORKING/CORBA/COR BASecurity.jsp http://www.javaolympus.com/J2SE/NETWORKING/CORBA/COR BASecurity.jsp - http://student.cosy.sbg.ac.at/~amayer/projects/corbasec/sec_ov erview.html http://student.cosy.sbg.ac.at/~amayer/projects/corbasec/sec_ov erview.html - www.omg.org www.omg.org

30 CORBA (Common Object Request Broker Architecture) Security - 2 l Identification and Authentication of Principles l Authorization and Access Control l Security Auditing l Security of communications l Administration of security information l Non repudiation

31 Dependable Object Request Brokers Technology provided by Project Hardware Display Processor & Refresh Channels Consoles (14) Navigation Sensors Data Links Data Analysis Programming Group (DAPG) Future App Future App Future App Multi-Sensor Tracks Sensor Detections Real Time Operating System MSI App Data Mgmt. Data Xchg. Infrastructure Services Integrate Security, Real- time and Fault Tolerance Computing

32 Secure Frameworks

33 Directions l Object Models - UML for Security applications is becoming common practice - Secure distributed object systems has gained popularity - Evolution into secure object-based middleware - Secure object-based languages - Integrating security and real-time for object systems l Distributed Objects - Security cannot be an afterthought for object-based interoperability - Use ORBs that have implemented security services - Trends are moving towards Java based interoperability and Enterprise Application Integration (EAI) - Examples of EAI products are Web Sphere (IBM) and Web Logic (BEA) - Security has to be incorporated into EAI products

Download ppt "Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Lecture #12 Secure Object Systems."

Similar presentations

Secure Dependable Stream Data Management Vana Kalogeraki (UC Riverside) Dimitrios Gunopulos (UC Riverside) Ravi Sandhu (UT San Antonio) Bhavani Thuraisingham.

Secure Dependable Stream Data Management Vana Kalogeraki (UC Riverside) Dimitrios Gunopulos (UC Riverside) Ravi Sandhu (UT San Antonio) Bhavani Thuraisingham.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 12 Slide 1 Distributed Systems Design 2.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 12 Slide 1 Distributed Systems Design 2.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 9 Distributed Systems Architectures Slide 1 1 Chapter 9 Distributed Systems Architectures.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 9 Distributed Systems Architectures Slide 1 1 Chapter 9 Distributed Systems Architectures.
I.1 Distributed Systems Prof. Dr. Alexander Schill Dresden Technical University Computer Networks Dept.

I.1 Distributed Systems Prof. Dr. Alexander Schill Dresden Technical University Computer Networks Dept.
7M701 1 Software Engineering Object-oriented Design Sommerville, Ian (2001) Software Engineering, 6 th edition: Chapter 12 )

7M701 1 Software Engineering Object-oriented Design Sommerville, Ian (2001) Software Engineering, 6 th edition: Chapter 12 )
Chapter 25 - 28 Object-Oriented Practices. Agenda Object-Oriented Concepts Terminology Object-Oriented Modeling Tips Object-Oriented Data Models and DBMSs.

Chapter Object-Oriented Practices. Agenda Object-Oriented Concepts Terminology Object-Oriented Modeling Tips Object-Oriented Data Models and DBMSs.
Distributed Systems Architectures

Distributed Systems Architectures
A brief look at CORBA. What is CORBA Common Object Request Broker Architecture developed by OMG Combine benefits of OO and distributed computing Distributed.

A brief look at CORBA. What is CORBA Common Object Request Broker Architecture developed by OMG Combine benefits of OO and distributed computing Distributed.
CORBA Case Study By Jeffrey Oliver March 2003. March 17, 2003CORBA Case Study by J. T. Oliver2 History The CORBA (Common Object Request Broker Architecture)

CORBA Case Study By Jeffrey Oliver March March 17, 2003CORBA Case Study by J. T. Oliver2 History The CORBA (Common Object Request Broker Architecture)
Chapter 13 Physical Architecture Layer Design

Chapter 13 Physical Architecture Layer Design
Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.

Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.
Beyond DHTML So far we have seen and used: CGI programs (using Perl ) and SSI on server side Java Script, VB Script, CSS and DOM on client side. For some.

Beyond DHTML So far we have seen and used: CGI programs (using Perl ) and SSI on server side Java Script, VB Script, CSS and DOM on client side. For some.
1 소프트웨어공학 강좌 Chap 9. Distributed Systems Architectures - Architectural design for software that executes on more than one processor -

1 소프트웨어공학 강좌 Chap 9. Distributed Systems Architectures - Architectural design for software that executes on more than one processor -
©Ian Sommerville 2000 Software Engineering, 6th edition. Chapter 11Slide 1 Chapter 11 Distributed Systems Architectures.

©Ian Sommerville 2000 Software Engineering, 6th edition. Chapter 11Slide 1 Chapter 11 Distributed Systems Architectures.
Slide 1 Systems Analysis and Design With UML 2.0 An Object-Oriented Approach, Second Edition Chapter 13: Physical Architecture Layer Design Alan Dennis,

Slide 1 Systems Analysis and Design With UML 2.0 An Object-Oriented Approach, Second Edition Chapter 13: Physical Architecture Layer Design Alan Dennis,
Enterprise Java Bean Matt. 2 J2EE 3 J2EE Overview.

Enterprise Java Bean Matt. 2 J2EE 3 J2EE Overview.
Enterprise Java Beans Java for the Enterprise Server-based platform for Enterprise Applications Designed for “medium-to-large scale business, enterprise-wide.

Enterprise Java Beans Java for the Enterprise Server-based platform for Enterprise Applications Designed for “medium-to-large scale business, enterprise-wide.
Slide 1 Physical Architecture Layer Design Chapter 13.

Slide 1 Physical Architecture Layer Design Chapter 13.
1 of 25. 2 of 25 3 of 25 ORBs (Object Request Broker) – A distributed software bus for communication among middleware services and applications – To.

1 of of 25 3 of 25 ORBs (Object Request Broker) – A distributed software bus for communication among middleware services and applications – To.
Data Management Information Management Knowledge Management Data and Applications Security Challenges Bhavani Thuraisingham October 2006.

Data Management Information Management Knowledge Management Data and Applications Security Challenges Bhavani Thuraisingham October 2006.

Similar presentations

Ads by Google