CALL FOR PARTICIPATION
FIRST WORKSHOP ON BUILDING AND USING CORBASEC ORBS
April 1-3, 1997
Baltimore, Maryland, USA
Co-Sponsored by the Object Management Group and the National Security Agency
INTRODUCTION
The Object Management Group (OMG) CORBA specification includes security
protocols and services that are being widely adopted. Unfortunately, a
full understanding of the strengths and weaknesses of the security
aspects of the CORBA standards requires experience with Object Oriented
Technology, Information Technology Security and operational system
planning, development and deployment. OMG is hosting this workshop to
bring together individuals with varying sets of these types of
experience to examine, explain and critique the adopted OMG security
specifications and other similar and related work.
The workshop approach will be to have individuals with the full range
of OOT, IT Security, and Operational System experience examine and
discuss, in turn, the content and meaning of the CORBA Security
standards, the design issues relevant to realizing the CORBA Security
standards in ORBs, and the design issues relevant to using ORBs meeting
the CORBA Security standards as the foundation for operational systems.
INSTRUCTIONS
The workshop is open to all with an interest in and understanding of
one or more of the CORBA Security standards or experience backgrounds.
Participation will be limitted to approximately 50 individuals who are
able to clearly and concisely express their perspective in one or more
of the following major categories (with example subordinate issues):
CORBA Security Standards
- Concise representation of the CORBA Security standard's security
model
- Concise representation of the CORBA Security standard's object
model
- Relationship of the CORBA Security standards to traditional
perspectives on IT Security
- Relationship of the CORBA Security standards to traditional
perspectives on OOT design
Secure ORB Design Issues
- How to implement CORBA Security standard mandatory (psuedo) objects
- The affect of the CORBA Security standard requirements on the rest
of the CORBA specifications' requirements
- Security assurance issues in ORBs
- Security Architecture issues in ORBs
- ORB Security dependencies on OS security
- ORB Security dependencies on network security
Secure ORB Usage Issues
- Capabilities provided by the CORBASec 1.1 standard objects
- Capabilities not provided by the CORBASec 1.1 standard objects
- Extending basic CORBASec 1.1 standard objects
- Administering security in Secure ORBs
Interested individuals or organizations are invited to submit a brief position
statement of one printed page (or 60 80-character email lines of text)
outlining a position on one or more of the three major categories by 20
December 1996 to
secws-submissions@omg.org
Workshop invitations and details of the workshop agenda will be
extended to selected authors by 21 February 1997.
WORKSHOP LOGISTICS
April 1-3, 1997
Registration Fee: $150
Marriott Inner Harbor, Baltimore
Pratt & Eutaw Street, Baltimore, MD 21201
Tel: +1-410-962 0202
Fax: +1-410-962 0404
Sleeping room rate will be: $129.00 S/D, rooms available April 1-3.
Workshop Reception Tuesday Evening, April 1, 1996
WORKSHOP COMMITTEE
Co-Chairs
Dr. Richard Soley Mr. David Chizmadia
Vice President & Technical Director Office of INFOSEC Computer Research
Object Management Group National Security Agency
soley@omg.org dmc@tycho.ncsc.mil
Program Review Committee
Bob Blakely, IBM
Charles Blauner, J.P.Morgan
Blaine Burnham, NSA
David Chizmadia, NSA
Belinda Fairthorne, ICL
Dan Gambel, General Research Corp.
Grace Hammonds, AGCS Inc.
Bret Hartmann, Blackwatch Technologies (Invited)
Jishnu Mukerji, HP
Peter Neumann, SRI, Inc
Marvin Schaefer, ARCA Systems
Richard Soley, OMG