Is SOAP secure?
Is SOAP secure?

    Requires Free Membership to View

    Login

    When you register, you'll begin receiving targeted emails from my team of award-winning writers. Our goal is to keep you informed on recent service-oriented architecture (SOA) and SOA-related topics such as integration, governance, Web services, Cloud and more.

    Hannah Smalltree, Editorial Director

    By submitting your registration information to SearchSOA.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSOA.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

SOAP is simply an XML message format that can be used to pass data between systems. It's not within the scope of SOAP to implement security. That being said, it's quite easy to secure SOAP messages. You can encrypt the SOAP messages to ensure data integrity and data privacy. You can sign the messages with a digitial signature for authentication and proof of origin. You can require that one or both of the participants in a SOAP message exchange authenticate themselves. You can intercept a SOAP message before it's passed to an application to check for proper authorization. This documentation provides an overview of how you might implement security using SOAP: http://www.systinet.com/products/wasp_advanced/doc/security_overview.html

This was first published in March 2002

Back to top