Security in Middleware-Based Telecommunication Architectures

The concept of using middleware-based architectures for telecommunication services in the broadband, multimedia, and information era is increasingly gaining acceptance. One representative example is the Telecommunications Information Networking Architecture (TINA), which is characterised by a variety of services, a multitude of service providers, a well-defined business model, a middleware platform for service development and provision, and the assumption of advanced customer premises equipment. Concepts for its security architecture are developed in the CrySTINA (Cryptographically Secured TINA) project. We introduce TINA, analyse it with regard to security and present the CrySTINA security architecture. CrySTINA is aligned with the OMG's CORBA Security specification, but enhances it with regard to security interoperability despite the heterogeneity of security policies and technologies, which must be expected in TINA networks as a result of following the approach of multilateral security for global networks in a consistent way. Thus, we present a model for the enforcement of security policies that supports the negotiation of security contexts.