Windows 2000 is a secure operating system. The security offered by the operating system protects the local machine from any unauthorized operation performed by a user. Each secured resource under the operating system can be configured to allow access to some users while denying access to others.
However, COM’s ability to invoke servers, especially from remote machines, raises security issues such as the verification of client’s credentials and how to validate that the client is privileged to perform an operation on a secured resource.
Security is also a concern for clients. A client may have good reasons not to trust the server, and therefore may wish to hide its credentials from the server.
COM+ provides support to address client-side ...