Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
1999-04-29
2004-02-03
Wright, Norman M. (Department: 2134)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C709S227000
Reexamination Certificate
active
06687831
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field
The present invention relates generally to an improved data processing system and in particular to a method and apparatus for providing a connection between objects in a data processing system. Still more particularly, the present invention provides a method and apparatus for dynamically providing connections with different types of security between a client proxy object and a server target object.
2. Description of Related Art
In providing communication and data exchange between objects of different types of origin and design, the Common Object Request Broker Architecture (CORBA) has been designed by the Object Management Group (OMG) to provide interoperability among the rapidly proliferating number of hardware and software products in the marketplace. CORBA specifies a system, which provides interoperability between objects in a heterogeneous, distributed environment and in a way transparent to the programmer. The OMG Object Model defines common object semantics for specifying the externally visible characteristics of objects in a standard and implementation-independent way. In this model clients request services from objects (which will also be called server target objects) through a well-defined interface. This interface is specified in OMG IDL (Interface Definition Language). A client proxy object accesses an object by issuing a request to the object. A client proxy object represents the server target object in the client process. The request is an event, and it carries information including an operation, the object reference of the service provider, and actual parameters (if any). The object reference is an object name that defines an object reliably.
The central component of CORBA is the Object Request Broker (ORB). It encompasses all of the communication infrastructure necessary to identify and locate objects, handle connection management, and deliver data. In general, the ORB Core is the most crucial part of the Object Request Broker; it is responsible for communication of requests.
The basic functionality provided by the ORB consists of passing the requests from client proxy objects to the object implementations on which they are invoked. In order to make a request the client proxy object can communicate with the ORB. Core through the IDL stub or through the Dynamic Invocation Interface (DII). The stub represents the mapping between the language of implementation of the client proxy object the ORB core. Thus the client proxy object can be written in any language as long as the implementation of the ORB supports this mapping. The ORB Core then transfers the request to the object implementation which receives the request as an up-call through either an IDL skeleton, or a dynamic skeleton.
In providing services to client proxy objects in CORBA, the OMG security service specification defines client-server security authentication functions in terms of the CORBA programming model. A strong decoupling relationship between this security service implementation and the ORB implementation is present. With the current implementations, dynamically providing security mechanisms for different specifications or protocols is absent.
Therefore, it would be advantageous to have an improved method and apparatus for specifying a security mechanism for use in connections between objects.
SUMMARY OF THE INVENTION
The present invention provides a method and apparatus in a computer system for establishing a connection between a client proxy object and a server target object. A request is received from the client proxy object to access the server target object, wherein the request includes an identification of a type of communication. The request also may include a type of message to be sent to the server target object. A connection object is identified based on the type of communication, the type of message, and quality of protection. The connection object implementing the type of communication is returned, wherein the connection between the client proxy object and the server target object is facilitated using the connection object. A server target object is an object that provides the function or implementation of the object in the server process.
REFERENCES:
patent: 5727145 (1998-03-01), Nessett et al.
patent: 6230160 (2001-05-01), Chan et al.
patent: 6253253 (2001-06-01), Mason et al.
patent: 6330677 (2001-12-01), Madoukh
patent: 6336118 (2002-01-01), Hammond
patent: 6356930 (2002-03-01), Garg
patent: 6425017 (2002-07-01), Dievendorff et al.
patent: 6453320 (2002-09-01), Kukura et al.
patent: 6457041 (2002-09-01), Hutchison
patent: 6477527 (2002-11-01), Carey et al.
patent: 6490624 (2002-12-01), Sampson et al.
patent: 2001/0051949 (2001-12-01), Carey et al.
A Discussion of the Object Management Architecture; Jan. 1997; 1-1—A-8; Object Management Group.
Albaugh Virgil Anthony
Benantar Messaoud
Buslawski John Alexander
Chang David Yu
High, Jr. Robert Howard
Bailey Wayne P.
International Business Machines - Corporation
Mims Jr. David A.
Wright Norman M.
Yee Duke W.
LandOfFree
Method and apparatus for multiple security service... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for multiple security service..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for multiple security service... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3340120