aspose file tools*
The moose likes Security and the fly likes To authors :Web services security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » Security
Bookmark "To authors :Web services security" Watch "To authors :Web services security" New topic
Author

To authors :Web services security

Pradeep bhatt
Ranch Hand

Joined: Feb 27, 2002
Posts: 8919

Hello authors,

What do you feel about security in web services ?Is it still maturing. I am hearing lot of terms in WS security like SAML, XML encryption. I am confused . does the book attempt to explain these terms and let readers know what should be where ?

Thanks
Pradip
[ January 10, 2006: Message edited by: Pradip Bhat ]

Groovy
Ramesh Nagappan
Author
Ranch Hand

Joined: May 06, 2003
Posts: 159
Pradip,

The key Web Services Security Specifications are already ratified as a standard (by OASIS) and there are implementation available to support them (particularly WS-Security, XML DSIG, XML ENC, SAML, XACML, XKMS).

The book digs a lot deeper into Web services Security and its nitty-grity details of how to implement them. The book also details 3 Web Services Security Patterns - Message Interceptor Gateway, Message Inspector and Secure Message Router.

For high-level details refer to this presentation:
http://www.coresecuritypatterns.com/downloads/Web202_SteelNagappanLai.pdf

For more details refer to Chapters 6,7,11 and 12.

Goodluck

/Ramesh


Ramesh Nagappan CISSP<br />Co-Author of "Core Security Patterns"<br />nramesh@post.harvard.edu<br /><a href="http://www.coresecuritypatterns.com" target="_blank" rel="nofollow">www.coresecuritypatterns.com</a>
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: To authors :Web services security