Securing Java RMI-Based Distributed Applications

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ninghui Li Articles by John C. Mitchell Articles by Derrick Tong

20th Annual Computer Security Applications Conference (ACSAC'04)

Tucson, Arizona

December 06-December 10

ISBN: 0-7695-2252-1

	ASCII Text	x
	Ninghui Li, John C. Mitchell, Derrick Tong, "Securing Java RMI-Based Distributed Applications," Computer Security Applications Conference, Annual, pp. 262-271, 20th Annual Computer Security Applications Conference (ACSAC'04), 2004.

	BibTex	x
	@article{ 10.1109/CSAC.2004.34, author = {Ninghui Li and John C. Mitchell and Derrick Tong}, title = {Securing Java RMI-Based Distributed Applications}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2004}, issn = {1063-9527}, pages = {262-271}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2004.34}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Securing Java RMI-Based Distributed Applications SN - 1063-9527 SP262 EP271 A1 - Ninghui Li, A1 - John C. Mitchell, A1 - Derrick Tong, PY - 2004 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Ninghui Li, Purdue University, West Lafayette, IN

John C. Mitchell, Stanford University, CA

Derrick Tong, Google Inc., Mountain View CA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.2004.34

Both Java RMI and Jini use a proxy-based architecture. In this architecture, a client interacts with a service through a proxy, which is code downloaded from a directory and installed on the client's machine. An attacker who controls the communication channels or the directory may compromise the confidentiality and integrity of the client and of the service. We present a security architecture that protects both clients and services in distributed proxy-based computing. In this architecture, the service registers a signed authentication proxy with the directory. The client, after downloading a signed authentication proxy from the directory, verifies the signature on the proxy, authenticates itself to the service through the proxy, and receives a dedicated session proxy for the service over a secure channel. We also describe a Java-based toolkit that implements the security architecture. This toolkit enables developers to add security to Java RMI-based applications with minimal implementation effort.

Citation:

Ninghui Li, John C. Mitchell, Derrick Tong, "Securing Java RMI-Based Distributed Applications," acsac, pp.262-271, 20th Annual Computer Security Applications Conference (ACSAC'04), 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.