Security as a service
When architects begin designing their organizational SOA one of the first tasks they need to undertake is to discover and document myriad services that can be shared across applications. While many architects are aware of - and even address - the need for common identity services, most still overlook application security as one of the logical sets of common code that can be abstracted into a service and shared for optimal reuse and efficiency. This makes very little sense from a SOA perspective, as these services are often more obviously a fit for a shared service than many pieces of logic that will become services across the organization.
[ Read more ]