> > security across the Internet. "Security really shouldn't be a major
> > issue anymore. It's not hard to make Web services secure," writes Anne
> > Thomas Maines, vice president and research director of application
> > platform strategies at the Burton Group, in an IM.>>
> Anne, I'm surprised you would say this sort of thing. Just because we
<....>
>Interoperability specifications for security only go so far,
>but the policies will still need to be encoded within the
>application by someone who knows what they're doing.
Advanced specifications that enable one to implement a policy driven fully
interoperable (across vendor products), security infrastructure still has a
bit of a way to go but it is very possible to implement a defense-in-depth
web services security infrastructure right now with the standards and
technologies that are currently in place.
> .. the average developer knows how to implement a secure Web service
In an enterprise implemenation of a web service infrastructure, security
should not be left (solely) in the hands of the developer but should instead
be considered a cross-cutting concern that should be managed and implemented
as part of the infrastructure.
Regards,
- Anil
:-
:- Anil John
:- http://www.aniltj.com/blog
:-
SPONSORED LINKS
| Computer software | Computer aided design software | Computer job |
| Soa | Service-oriented architecture |
YAHOO! GROUPS LINKS
- Visit your group "service-orientated-architecture" on the web.
- To unsubscribe from this group, send an email to:
[EMAIL PROTECTED]
- Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.
