Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

A Resource Access Decision Service for CORBA-Based Distributed Systems



Konstantin Beznosov, Yi Deng, Bob Blakley, Carol Burt, John Barkley


Decoupling authorization logic from application logic allows applications with fine-grain access control requirements to be independent from a particular access control policy and from factors that are used in authorization decisions as well as access control models, no matter how dynamic those polices and factors are. It also enables elaborate and consistent access control policies across heterogeneous systems. We present a design of a service for resources access authorization in distributed systems. The service enables the decoupling of authorization logic from application functionality. Although the described service is based on CORBA technology, the design approach can be successfully used in any distributed computing environment.
Conference Dates
December 6-9, 1999
Conference Location
Phoenix, AZ, US
Conference Title
15th Annual Computer Security Applications Conference (ACSAC '99)


access control, authorization, Common Object Request Broker Architecture, CORBA technology, RBAC, Role-Based Access Control


Beznosov, K. , Deng, Y. , Blakley, B. , Burt, C. and Barkley, J. (1999), A Resource Access Decision Service for CORBA-Based Distributed Systems, 15th Annual Computer Security Applications Conference (ACSAC '99), Phoenix, AZ, US, [online],, (Accessed February 28, 2024)
Created December 8, 1999, Updated October 12, 2021