This work presents a CORBA-based multi-tier architecture which is capable of adding security to an existing service. We assume the legacy application is available as a compiled program, consisting of a client and a server module. Under these assumptions, we show how to build a new system, which reintegrates the original service, and secures it. The architecture we propose is quite flexible and represents a framework which can be adopted -with minor changes- for improving the security level of a wide class of legacy systems. A system prototype has been developed and its performance evaluated. The prototype uses digital certificates which can be provided by virtually any Certification Authority. A fundamental advantage of the proposed approach is that the legacy server is integrated in the secure system with no changes being made to it. This min- imizes the development effort, since full reuse of existing software is achieved. Furthermore, backward compatibility is preserved, since it is possible to integrate the new clients with the preexisting applications, protecting the investment in legacy systems.
Integration of Legacy Client-Server Applications in a Secure Multi-Tier Architecture / Cotroneo, Domenico; Mazzeo, Antonino; L., Romano; Russo, Stefano. - STAMPA. - (2002), pp. 269-276. (Intervento presentato al convegno EUROMICRO-PDP'02 10th Euromicro Workshop on Parallel, distributed and network-based processing tenutosi a Las Palmas Gran Canaria, Spain nel 9-11 January 2002) [10.1109/EMPDP.2002.994289].
Integration of Legacy Client-Server Applications in a Secure Multi-Tier Architecture
COTRONEO, DOMENICO;MAZZEO, ANTONINO;RUSSO, STEFANO
2002
Abstract
This work presents a CORBA-based multi-tier architecture which is capable of adding security to an existing service. We assume the legacy application is available as a compiled program, consisting of a client and a server module. Under these assumptions, we show how to build a new system, which reintegrates the original service, and secures it. The architecture we propose is quite flexible and represents a framework which can be adopted -with minor changes- for improving the security level of a wide class of legacy systems. A system prototype has been developed and its performance evaluated. The prototype uses digital certificates which can be provided by virtually any Certification Authority. A fundamental advantage of the proposed approach is that the legacy server is integrated in the secure system with no changes being made to it. This min- imizes the development effort, since full reuse of existing software is achieved. Furthermore, backward compatibility is preserved, since it is possible to integrate the new clients with the preexisting applications, protecting the investment in legacy systems.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
