[Ace-users] Re: [tao-users] Bidir GIOP and SSL
Douglas C. Schmidt
schmidt at dre.vanderbilt.edu
Thu Jun 28 04:29:02 CDT 2007
Hi Joerg,
> I've got a question about the coexistence of the Bidirectional GIOP and the SSL protocol on TAO 1.4.10.
TAO 1.4.10 is very old!! Please upgrade to ACE+TAO+CIAO x.5.8 (i.e.,
ACE 5.5.8, TAO 1.5.8, and CIAO 0.5.8), which you can download from
http://download.dre.vanderbilt.edu
under the heading: "Latest Beta Kit".
The DOC groups at Washington University, UC Irvine, and Vanderbilt
University only provide "best effort" support for non-sponsors for the
latest release, as described in
http://www.dre.vanderbilt.edu/~schmidt/DOC_ROOT/ACE/docs/ACE-bug-process.html
Thus, if you need more "predictable" help for earlier versions of
ACE+TAO, I recommend that you check out
http://www.dre.vanderbilt.edu/support.html
for a list of companies that will provide you with ACE+TAO commercial
support.
Thanks,
Doug
> This answer is very crucial for our system design.
> I hope you can help me with that.
>
> Scenario:
> ########
> Let's assume, we have a management system A and a target system B (running TAO 1.4.10 with SSLIOP)
> Both systems use bidir. GIOP and SSL.
> Certificates are ONLY stored on target system B, system A does NOT store any certificates.
>
> Management system A starts a Corba server (callback server) and target system B starts another Corba server (request
> server).
>
> Now the management system A starts a client and initiates an SSL connection.
> After the successful handshake (with server authentication) it sends a request to the target system B (request server).
> In this message it sends the IOR of its own callback server.
>
> After that the target system B sends a message to the callback server.
>
> Questions:
> #########
> Does the TAO on target system B REUSE the TCP/SSL connection, that is already build between A and B?
> In other words: Is it possible to have only ONE SINGLE TCP/SSL connection between A and B?
>
> Or do we need two separate connections, one for each direction?
>
> And - is it possible to survive with certificates stored ONLY one the target system B?
> Or does the management system A also need certificates?
>
> Thank you for answering and
>
> Best Regards,
> Jörg Rockel
>
> _______________________________________
>
> www.nokiasiemensnetworks.com
> Nokia GmbH, Nokia Networks
> Heltorfer Str.1
> D-40472 Düsseldorf Germany
>
> Jörg Rockel
> Senior Software Design Engineer
>
> Research & Development
>
> Jörg Rockel at nsn.com
> Mobile +49 (0)151 5515 3554
> Fax +49 (0) 211 9412 3383
> _______________________________________
>
> The networks business area operates on behalf of Nokia Siemens Networks.
>
> This message is confidential. If you have received this message in error, please delete it from your system. You should not
> copy it for any purpose, or disclose its contents to any other person. Internet communications are not secure and therefore
> Nokia GmbH does not accept legal responsibility for the contents of this message as it has been transmitted over a public
> network. Thank you.
>
> Nokia GmbH, Nokia Networks is a German Company. Further information about the Company is available from its principal
> offices at Heltorferstrasse 1, D-40472, Düsseldorf, Germany and from the website at http://www.nokia.com
> Sitz der Nokia GmbH: Bochum Amtsgericht Bochum: HRB 4112; Umsatzsteueridentifikationsnummer DE 811163 495; WEEE-Reg.-Nr. DE
> 51797011;
> Vorsitzender des Aufischtsrates Veli Sundbäck; Geschäftsführer Timo Elonen, Razvan Olosu (Sprecher), Klaus Goll, Dr. Ulrich
> Halka. Karsten Schilly
>
> _______________________________________________
> tao-users mailing list
> tao-users at mail.cse.wustl.edu
> http://mail.cse.wustl.edu/mailman/listinfo/tao-users
More information about the Ace-users
mailing list