Summary


We have now completed our first stop on the software fortress tour. We have covered the two fortress types that are Internet intermediaries. The major points are these:

  • Presentation fortresses deal with browser clients .

  • Web service fortresses deal with foreign processes.

  • Both presentation and Web service fortresses act as security buffers between the outside world and your precious computing systems.

  • As of press time, Microsoft's .NET technologies have several important advantages for the presentation fortress. There are no obvious differentiators for the Web service fortresses, although IBM does seem to have taken an early lead among the J2EE vendors .

  • Scalability of Web service and presentation fortresses is achieved through IP load balancing and loosely coupled clusters.

  • Security is paramount for Internet fortresses. The general approach is to guard the fortresses the best you can and then assume you will fail.

  • Make sure your presentation fortresses manage browser state in a way that is consistent with scaling out the cluster.

  • Make all of your requests idempotent.

  • Hope that the powers that be get around to improving SOAP before you have to use it ( especially from the security perspective).

  • For your Web service fortress, plan to use SOAP for formatting requests, WSDL for describing them, and WS-Inspection for making your WSDL documents available.



Software Fortresses. Modeling Enterprise Architectures
Software Fortresses: Modeling Enterprise Architectures
ISBN: 0321166086
EAN: 2147483647
Year: 2003
Pages: 114

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net