Ten guidelines for deploying secure XML Web services
The rise of internetworking was enabled by the use of network-level security technologies such as Secure Sockets Layer, IPsec and firewall filtering to create a secure perimeter around an enterprise network.
Today, as companies cut costs and drive revenues by securely sharing applications with internal business units, external partners and customers, the secure perimeter has become permeable This shift to the server-to-server access needed for true application sharing is enabled by new XML Web services technologies.
But this promise of seamless communication can't occur without the introduction of several security practices. Just as IP internetworking was accompanied by new security requirements, so are XML Web services. While not a comprehensive list, the following best practices from Fortune 500 companies and collected across numerous industries are a solid starting point to further protect company resources with XML Web services security.
By Eugene Kuznetsov at Computerworld.
[ Read more ]
- Article: Interview with Eugene Kuznetsov, Founder, President and CTO of DataPower Technology Inc. (24 January 2003)