Architect s Notes

Previous page
Table of content
Next page

Architect's Notes

  • Security requires an end-to-end perspective and not just a point-to-point one. It is not simply the exchange of data between the client and the server that is important, but instead the entire path that the data takes. This includes not only technologies, but also operational processes.

  • Do not encrypt the entire message. Due to the overhead of encryption and decryption, only encrypt what needs to be encrypted. Encrypt data meant for different people using different keys. The advantage of using XML Encryption is that it supports both of these requirements.

  • Inline signatures with the information that they sign. Signed documents are important not only during transmission between parties, but also as a means to prove and enforce accountability and liability. To do so, signed documents must be easily archived so that both the contents of a document as well as its signature(s) can be easily retrieved at a later time. XML Digital Signatures supports inlined signatures and also allows different signatures for different parts of a document.

  • WS-Security is emerging as the de facto standard for a comprehensive framework for Web services security.


Previous page
Table of content
Next page
Developing Enterprise Web Services. An Architect's Guide
Developing Enterprise Web Services: An Architects Guide: An Architects Guide
ISBN: 0131401602
EAN: 2147483647
Year: 2003
Pages: 141
Authors: Sandeep Chatterjee, James Webber
BUY ON AMAZON
Beginners Guide to DarkBASIC Game Programming (Premier Press Game Development)
Introducing Microsoft ASP.NET AJAX (Pro - Developer)
Information Dashboard Design: The Effective Visual Communication of Data
Pocket Guide to the National Electrical Code(R), 2005 Edition (8th Edition)
AutoCAD 2005 and AutoCAD LT 2005. No Experience Required
The Oracle Hackers Handbook: Hacking and Defending Oracle
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy