From: Charlie Lai <charlie@angeles.eng.sun.com>
Message-Id: <199905182054.NAA18469@angeles.eng.sun.com>
Subject: Re: Invoker ID based security
To: om@mathcs.emory.edu
Date: Tue, 18 May 1999 13:54:00 -0800 (PDT)
In-Reply-To: <3741CD11.C6B1C182@mathcs.emory.edu> from "Mauro Migliardi" at May 18, 99 04:26:57 pm
> Is there any support for an invoker ID based security scheme?
> It seems to me it's possible to fine tune what a piece of code is
> allowed to do on the basis of where it comes from but there is no
> support to make such a decision on the basis of "who" is trying to
> execute it.
> The latter is a useful concept in a distributed objects environment.
thanks for asking.
we're working on such support, and the specification is currently
open for public review at:
http://java.sun.com/security/jaas
thanks,
charlie