Previous section.

Technical Study: Security in Federated Naming

Technical Study: Security in Federated Naming
Copyright © 1997 The Open Group

Introduction

Scope and Purpose

This document reviews the security aspects of the Federated Naming API specification (XFN) as part of the overall review of the security aspects of all Open Group specifications.

The Security Working Group has produced the Distributed Security Framework (XDSF). This document complements that framework by interpreting the general security considerations addressed by the framework in the specific context of the XFN.

As the XFN is a generic interface to multiple naming systems this document presents an analysis of the security threats and appropriate countermeasures applicable to a general naming service and then considers the impact of these threats and countermeasures in the context of the XFN itself.

The document concludes with specific proposals on how the XFN API may be extended to cater more fully for the security aspects of naming services as a stimulus to promote further discussion.

Intended Audience

This document is of primary interest to the technical working groups of the Open Group responsible for the Federated Naming Specification and security. It will also be of interest to developers who are implementing or planning to implement a federated naming service based on the XFN.

Document History

The first draft of this document was reviewed by the OpenGroup Security Program Group at a meeting held in June 1996. This draft includes the comments and observations arising from that review.

The second draft of this document was reviewed by XNET, the Interworking SWG of the Open Group at its meeting in September 1996.


Why not acquire a nicely bound hard copy?
Click here to return to the publication details or order a copy of this publication.

Contents Next section Index