It seems to me like not allowing the JAR files that contain the business objects to be installed on the client machines would work fine.
Another option would be to (perhaps) include a check in the top-level business object for something that can only be provided by the Session
EJB (perhaps the EJB context).
Kyle
------------------
Kyle Brown,
Author of
Enterprise Java (tm) Programming with IBM Websphere
See my homepage at
http://members.aol.com/kgb1001001 for other WebSphere information.
[This message has been edited by Kyle Brown (edited October 25, 2001).]