Security Analysis of the Utilization of Corba Object References as Authorization Tokens

10th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC'07) Pub Date : 2007-05-07 DOI:10.1109/ISORC.2007.54
Christoph Becker, S. Staamann, R. Salomon
{"title":"Security Analysis of the Utilization of Corba Object References as Authorization Tokens","authors":"Christoph Becker, S. Staamann, R. Salomon","doi":"10.1109/ISORC.2007.54","DOIUrl":null,"url":null,"abstract":"In object-oriented real-time computing scenarios, particularly where Corba is used in embedded systems with resource constraints, developers and system architects often utilize Corba object references as authorization tokens. This paper investigates the security of this method in principle, and it presents the results of the analysis of the work and computing effort necessary for a potential attacker to fabricate Corba object references to existing objects for the purpose of illegitimately gaining access to these objects at the instance of seven widely used Corba products","PeriodicalId":265471,"journal":{"name":"10th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC'07)","volume":"81 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-05-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"10th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC'07)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISORC.2007.54","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 8

Abstract

In object-oriented real-time computing scenarios, particularly where Corba is used in embedded systems with resource constraints, developers and system architects often utilize Corba object references as authorization tokens. This paper investigates the security of this method in principle, and it presents the results of the analysis of the work and computing effort necessary for a potential attacker to fabricate Corba object references to existing objects for the purpose of illegitimately gaining access to these objects at the instance of seven widely used Corba products
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
使用Corba对象引用作为授权令牌的安全性分析
在面向对象的实时计算场景中,特别是在具有资源约束的嵌入式系统中使用Corba的场景中,开发人员和系统架构师经常使用Corba对象引用作为授权令牌。本文从原则上研究了该方法的安全性,并以七个广泛使用的Corba产品为例,分析了潜在攻击者为了非法访问现有对象而伪造Corba对象引用所需的工作和计算工作量的结果
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
10th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC'07)
10th IEEE International Symposium on Object and Component-Oriented Real-Time Distributed Computing (ISORC'07)
自引率
0.00%
发文量
0
期刊最新文献
A Profile for Safety Critical Java Using Multi-Agent Principles for Implementing an Organic Real-Time Middleware Compositional Schedulability Analysis of Hierarchical Real-Time Systems Analyzing Behavior of Concurrent Software Designs for Embedded Systems Detection of Fractal Breakdowns by the Novel Real-Time Pattern Detection Model (Enhanced-RTPD+Holder Exponent) for Web Applications
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1