| Author |
To authors :Web services security
|
Pradeep bhatt
Ranch Hand
Joined: Feb 27, 2002
Posts: 8876
|
|
Hello authors,
What do you feel about security in web services ?Is it still maturing. I am hearing lot of terms in WS security like SAML, XML encryption. I am confused . does the book attempt to explain these terms and let readers know what should be where ?
Thanks
Pradip 
[ January 10, 2006: Message edited by: Pradip Bhat ]
|
Groovy
|
 |
Ramesh Nagappan
Author
Ranch Hand
Joined: May 06, 2003
Posts: 159
|
|
Pradip,
The key Web Services Security Specifications are already ratified as a standard (by OASIS) and there are implementation available to support them (particularly WS-Security, XML DSIG, XML ENC, SAML, XACML, XKMS).
The book digs a lot deeper into Web services Security and its nitty-grity details of how to implement them. The book also details 3 Web Services Security Patterns - Message Interceptor Gateway, Message Inspector and Secure Message Router.
For high-level details refer to this presentation:
http://www.coresecuritypatterns.com/downloads/Web202_SteelNagappanLai.pdf
For more details refer to Chapters 6,7,11 and 12.
Goodluck
/Ramesh
|
Ramesh Nagappan CISSP<br />Co-Author of "Core Security Patterns"<br />nramesh@post.harvard.edu<br /><a href="http://www.coresecuritypatterns.com" target="_blank" rel="nofollow">www.coresecuritypatterns.com</a>
|
|
 |
|
|
subject: To authors :Web services security
|
|
|
0
