I am trying to make some fundamental decisions about my application architecture. One of the main constraints of this architecture is getting information from within the trusted network out to requestors on the net through a DMZ. My understanding is that the DMZ is set up between two firewalls. The one facing the Internet only allows HTTP in, and the one in front of the trusted network only allows traffic between the trusted network and the DMZ. The question is what protocol to use from the DMZ into the trusted network. As I read through posts on this news group, I often see protocols like DCOM, FTP and SOAP characterized as insecure protocols. In general what makes a protocol particularly secure or insecure ? If the firewall only lets traffic from the DMZ into the trusted network, then how important is the secureness of the given protocol between these two areas for my application ? The client is fixated on SOAP for this purpose. They want to only allow SOAP traffic back and forth between the DMZ. Why would they think that SOAP is any better for security purposes than just plain HTTP or even DCOM for that matter ? - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
