[XML-DEV Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message] Re: SOAP-RPC and REST and security
On Wednesday 20 February 2002 04:33 pm, Michael Brennan wrote: > > I talked to an EJB expert about REST. We were talking about > > security models. I described how REST has a natural ACL or > > capabilities model. What's the natural model of RMI (which is > > basically OO RPC with class distribution)? An RPC {host,method) pair is roughly akin to a capability... in fact in one of our products we use this id to protect method calls over RMI. That said, both the above and REST are flawed as a capability-based system because of the arbitrary discoverability holes.
|
PURCHASE STYLUS STUDIO ONLINE TODAY!Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced! Download The World's Best XML IDE!Accelerate XML development with our award-winning XML IDE - Download a free trial today! Subscribe in XML format
|