< Day Day Up > |
As work to secure Web services continues, we can also consider this an opportunity to evaluate Web Services offerings through the lens of risk assessment. No Web service is impenetrable to attack. Every offering of a Web service implies the notion of risk; whether on the Internet or on an intranet, there is always a risk when a Web service interface is externally exposed. The following questions arise.
To be able to supply a complete Web Services environment in which risk assessment and policy enforcement are an integral component will depend on several initiatives continuing to evolve as de facto standards.
|
< Day Day Up > |