Edge Security for SOA & Web Services
SOA Security Background
XML Web Services is the most widely accepted means of loosely coupling applications. As a result any cross domain or cross enterprise integration today is likely to be based on XML Web Services over open or common protocols such as HTTP/S, FTPS, SFTP, IBM MQ Series, TIBCO JMS, or JMS implementations. However, such XML and web services standards based cross domain exchange expand the attack boundary of the applications due to lack of developer awareness of threats exposed and limited availability of protocol & standards in COTS applications.
In addition, XML Web Services offers a rich means of enforcing authentication, authorization, access control, confidentiality and message integrity at a very granular level using standards such as WS-Security, SAML and the like. The richness of these specifications makes it a daunting task for the developer to design web services security into the applications.
Intel Solution
The Intel® Expressway Service Gateway soft-appliance decouples security enforcement from applications offering change management, compliance and control benefits. In addition, deploying the Service Gateway to secure web services provides:
- WS-I Compliance verification
- WS-Security, SAML 1.1/2.0, WS-SecurityPolicy standards support
- XML Threat detection & prevention against xDoS, SQL/XPath injection, viruses and other threats
- Quality of Service (shaping, throttling)
- Integration with all major Identity & Access Management Systems to extend SOA security investments
For more complete information about compiler optimizations, see our Optimization Notice.