Object Oriented Database Learning Center

Objectivity Home - Government - Objectivity/DB - Webinars - Download Software

Download a PDF version of this Article

Learning Center Home

Table of contents:

Objectivity/DB - Flexible Deployment

• Introduction
• Single Logical View
• Simple Distributed Servers
• Replaceable Components
• Configuration Parameters
• Processor Power
• Data Locality
• Input/Output Capabilities
• Network Bandwidth
• Concurrency
• Caching
• Data Usage Dynamics
• System Latency
• Fault Tolerance
• Geography/Mobility
• Security
• Configuration Examples

Security

Centralized database servers manage security on behalf of a community of users and generally apply a single set of rules. Objectivity/DB is a distributed database and it is possible to implement different rules at each site in a federation. The current mechanism for achieving this uses a replaceable component, called Objectivity Open File System [Objectivity/OOFS], within the Advanced Multithreaded Server. OOFS calls another replaceable component that implements a Generalized Security Architecture protocol.

The system or database administrators at each site can link their own versions of OOFS to the appropriate security mechanisms for their data and situation. Objectivity/Secure provides a sample implementation of a replaceable Generalized Security Architecture module that uses Kerberos authentication. Figure 14 (below) shows a configuration where one site is using LDAP and another is using SAML to enforce security policies.

Objectivity/SQL++ implements the standard SQL GRANT/REVOKE privacy mechanisms via an interactive command line tool, enabling control down to the object (row) level.