Procedure-Level Authorization for Java Remote Method Invocation Using Secure Socket Layer (SSL) Credentials

Abstract

Due to the encapsulation of the RMI transport layer, methods invoked over RMI lose access to the sockets through which their particular instances were called. This prevents subroutines from first verifying the credentials of their caller to authorize each particular invocation. We present a technique within Java RMI enabling socket information to be re-embedded into the RMI transport and made accessible to methods on their invocation. This implementation is also thread-independent, which allows for safer parallel processing without the limitation of any thread assumptions.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 01, 2010
Accession Number
ADA533726

Entities

People

  • Alexander Shoulson
  • Kevin Pearson

Organizations

  • Air Force Research Laboratory

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Coding
  • Communication Channels
  • Computer Access Control
  • Computer Communications
  • Computer Networks
  • Government Procurement
  • Governments
  • Information Exchange
  • Intellectual Property
  • Local Area Networks
  • Network Protocols
  • Procedures (Computers)
  • Security Protocols
  • Transport Protocols
  • Transport Ships

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Parallel and Distributed Computing.