Security Association
Classification Key
: Perimeter Security, Information Disclosure
Problem
Secure Communication pattern adds overhead because it adds expensive security mechanisms. It is better if the security associated information is not added to the data � content every time two parties communicate but only used when the connection is established. This requires storing security related information at each end of communications channel.
How can this be done?
Solution
Define a structure that provides each participant in a secure communication with the information it will use to protect messages to be transmitted to the other party, and with the information which it will use to understand and verify the protection applied to messages received from the other party.
Known Uses
Security Contexts in OMG CORBA Security.
Related Patterns
Secure Communication
Source
Open Group Catalog
Tags
Security Association
|