No. Start with risk assessment. XML-SOAP messages burrow thru most firewalls. The orchestration of services to provide composite services means that SSL is insufficient. SSL is transport layer security and provides only point to point security---creates a very useful pipe. Even though SSL is an important part of a layered approach, it is NOT end to end. WS-Security is designed to create content layer security---end-end.
The customer facing apps in question are either: 1) looking for low latency because customers want rapid interaction or 2) looking for greater assurance because customers are concerned about their financial information. What is the vertical? What are your thruput requirements and document size support required? Have you looked at our products that can support AXIS? www.intel.com/software/xml . Dave David E.A. Johnson Director, Digital Security Products Intel Corporation SSG-ESSD 1815 S. Meyers Rd., Suite 150 Oakbrook Terrace, Illinois 60441 770-433-3272 direct 404-769-7207 mobile ________________________________ From: Hoda, Nadeem [USA] [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 5:52 AM To: [email protected] Subject: RE: secure web services Also, depending on the specific requirements, for simple security requirements, SSL is sufficient for security as it provides a highly secured channel of communication between service provider and consumer. Nadeem ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 5:33 PM To: [email protected] Subject: RE: secure web services Hi , Maybe you can use rampart for signing and encrypting you Soap-messages. See. http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html Dirk -----Original Message----- From: Asensio, Rodrigo [mailto:[EMAIL PROTECTED] Sent: woensdag 16 januari 2008 12:16 To: [email protected] Subject: secure web services Hello, I'm posting a new web service with critical functionality for my company. Our customers will communicate with us thru this new features. I would like to know what is a good approach to security in this case. Thank you Rodrigo This message (including any attachments) contains confidential and/or proprietary information intended only for the addressee. Any unauthorized disclosure, copying, distribution or reliance on the contents of this information is strictly prohibited and may constitute a violation of law. If you are not the intended recipient, please notify the sender immediately by responding to this e-mail, and delete the message from your system. If you have any questions about this e-mail please notify the sender immediately. ================================================ The information transmitted via this e-mail is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer.
