
	Home > Ask the SOA Experts > EAI/Web services Questions & Answers > Can you recommend any resources which address Web services security?

Ask The SOA Expert: Questions & Answers

EMAIL THIS

Can you recommend any resources which address Web services security?

EXPERT RESPONSE FROM: David Linthicum

		Pose a Question

		Other SOA Categories

		Meet all SOA Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 30 May 2002
Are there any whitepapers, scenarios, best practices, or documented experiences with resolving security issues in Web services as they are today?

Web services do not address security well, in the current state-of-the-art of the standard. Lacking is support for authentication, encryption, and access control. Indeed, Web services do not have the ability to authenticate publishers or consumers of the Web services. The XML-Based Security Services Technical Committee from the Organization for the Advancement of Structured Information Standards (OASIS) is looking to shore up security within Web services with the Security Assertion Markup Language (SAML). This security standard allows organization to share authentication information between those they wish to share Web services with as partner organizations. Other emerging security standards include the XML Key Management Specification (XKMS), based on PKI (Public Key Infrastructure).

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Enterprise Application Integration (EAI)
	Enterprise mashups: Tools build data integrations
	ESB Tutorial
	ESB watered down by EAI, but distinction remains
	Second look at Oracle licenses in wake of Sun merger
	JNBridge releases JNBridgePRO 4.1
	What are chief criteria for analyzing "enterprise mashups"? Especially in relation to a "mainframe wrappering" project?
	Crosscheck Networks acquires XML gateway maker Forum Systems
	Oracle buys Sun for $7.4B
	Enterprise architecture must focus on business value
	The business side has silos too
	Enterprise Application Integration (EAI) Research

EAI/Web services

Advanced business application programming/4

SCA and SDO standards

Apache Tomcat

Grid technology

EAI in use

Java platforms

Thinking integration first

REST vs. SOAP

Open source ESBs

Web services standards

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

webMethods (SearchSOA.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

SOA Governance White Papers - BPM, EDA, IT Governance

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2001 - 2009, TechTarget \| Read our Privacy Policy