Web Service Security

R

Ron Vecchi

Can someone point me in the right direction to securing soap messages to a
webservice. I have found and read a lot about WS-Security but am having
trouble finding ways to implement it in code.

Thanks!
 
D

DalePres

If you have Kalani's 70-320 study guide available, read chapter 11. It has
a great section that really simplifies the discussion of using
Windows.Principal and demand security. Demand security works great for web
services.

Dale
 
G

Gerald Brose

Ron said:
Can someone point me in the right direction to securing soap messages to a
webservice. I have found and read a lot about WS-Security but am having
trouble finding ways to implement it in code.

If you don't want to code to a security API such as WSE 2.0 and
thus hard-code the security loic and policy into your application,
then a better way is to use a security gateway aka XML firewall,
such as Xtradyne's Web Services DBC (WS-DBC).

The WS-DBC sits in the path of the messages and performs authen-
tication, authorization, transport security, auditing, and
content inspection (XPath filters, XML schema validation, virus
scanning of SOAP attachments). It supports security standards such
as WS-Security, SAML, XACML, XML encryption and digital signature,
etc. Policies are centrally managed using a powerful GUI, rather
than hard-wired in the code. Due to its excellent performance,
scalability and high-availability feature it is especially
suitable for enterprise settings.

Regards, Gerald.
 
R

Ron Vecchi

Interesting, Thanks

Gerald Brose said:
If you don't want to code to a security API such as WSE 2.0 and
thus hard-code the security loic and policy into your application,
then a better way is to use a security gateway aka XML firewall,
such as Xtradyne's Web Services DBC (WS-DBC).

The WS-DBC sits in the path of the messages and performs authen-
tication, authorization, transport security, auditing, and
content inspection (XPath filters, XML schema validation, virus
scanning of SOAP attachments). It supports security standards such
as WS-Security, SAML, XACML, XML encryption and digital signature,
etc. Policies are centrally managed using a powerful GUI, rather
than hard-wired in the code. Due to its excellent performance,
scalability and high-availability feature it is especially
suitable for enterprise settings.

Regards, Gerald.
--
Dr. Gerald Brose mailto:[email protected]
Xtradyne Technologies http://www.xtradyne.com
Schoenhauser Allee 6-7, Phone: +49-30-440 306-27
D-10119 Berlin, Germany Fax : +49-30-440 306-78
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Web Service Security 0
Web Site 1
new in web service 2
Web Service Security....sigh 1
consuming the web service 5
WCF vs Web Service Security 0
Authenticate to a Web Service 7
XML Web Service Soap headers 0

Members online

No members online now.

Forum statistics

Threads
473,995
Messages
2,570,236
Members
46,822
Latest member
israfaceZa

Latest Threads

Top