|Oracle8i Enterprise JavaBeans Developer's Guide and Reference
Release 3 (8.1.7)
Part Number A83725-01
As discussed in the Oracle8i Java Developer's Guide, there are several security issues you must think about for your application. The Oracle8i Java Developer's Guide divides security into network connection, database contents, and JVM security issues. All these issues are pertain to IIOP. However, IIOP has specific implementation issues for both the networking and the JVM security, as listed below:
loadjavatool. See the
loadjavadiscussion in the Oracle8i Java Developer's Guide for information on granting execution rights when loading the CORBA classes.
- Session authorization--The session is authorized to the user. In this case, the client is authorized to access the server through validating either the username or certificate provided.
- User authorization--The client or server can perform authorization on a provided certificate. This type of authorization can be performed only when the client or server authenticates itself by providing a certificate.
This section describes fully the network connection security issues that IIOP applications must consider.