Certificate Passing

• Client stores its certificates into the CORBA security context object called Current, which represents the current execution context in a client/server interaction

• PrincipalAuthenticator is used to prove the possession of private key corresponding to the certificate subject

• Current object gets automatically and transparently passed to the server whenever a remote method is invoked, so the server can obtain the client’s certificates

Current

Transparent certificate passing

PrincipalAuthenticator

Client

CORBA server

Method call

Previous slide

Next slide

Back to first slide

View graphic version