Web Services Security (WSS)

Posts on the
Design Decomposition Blog

You might have seen the recent news reports about the collision between U.S. and Russian communication satellites. The U.S. satellite was one of the Iridium satellites. What wasn’t reported and you probably don’t know is that an object database management system (ODBMS) is an important part of the Iridium system. Even though ODBMSs are a [...]
February 13, 2009

(The Acronym) SOA is (Perhaps) Dead (at Some Companies); Long Live Services

I am now also posting on the Cutter Blog. My initial posting is (The Acronym) SOA is (Perhaps) Dead (at Some Companies); Long Live Services. It is a response to Anne Thomas Manes’ SOA is Dead; Long Live Services on her blog at the Burton Group.
January 9, 2009

Atomicity

The typical definition of an atomic task or process is one that cannot be decomposed further. This is vague and subject to interpretation. The Decomposition Matrix on this site uses a specific definition: A task (for business process diagrams) or a process (for data flow diagrams) is atomic if every input relates to every output [...]
December 3, 2008

Well-Formed Business Process Diagrams

My last posting referenced the criteria for a well-formed business process diagram mentioned in Business Process Driven SOA using BPMN and BPEL by Matjaz B. Juric and Kapil Pant. I am going to expand on their criteria to create a more comprehensive definition of a well-formed business process diagram. To start, here are three criteria [...]
November 18, 2008

Recent Business Process Modeling Books

I recently received two new books on business process modeling. Both books looked interesting because they had great titles. As it turns out, one book is great and the other not so good. The not so good book is Business Process Driven SOA using BPMN and BPEL by Matjaz B. Juric and Kapil Pant. There [...]
October 9, 2008

The Design Decomposition Blog
is written by Doug Barry.

Web Services Security (WSS or WS-Security) describes enhancements to SOAP messaging in order to provide quality of protection through message integrity, and single message authentication. These mechanisms can be used to accommodate a wide variety of security models and encryption technologies.

The scope of the Web Services Security Technical Committee is the support of security mechanisms in the following areas:

Using XML Signature (new window) to provide SOAP message integrity for Web services
Using XML Encryption (new window) to provide SOAP message confidentiality for Web services
Attaching and/or referencing security tokens in headers of SOAP messages. Options include:
- Username token
- SAML (new window)
- XrML (new window)
- Kerberos
- X.509
Carrying security information for potentially multiple, designated actors
Associating signatures with security tokens
Each of the security mechanisms will use implementation and language neutral XML formats defined in XML Schema (new window).

Current specification: Web Services Security: SOAP Message Security

The basis of the work is the WS-Security specification submitted to OASIS by IBM, Microsoft, and VeriSign.

Organization: OASIS

More information: WSS page on the OASIS website (new window)

More detail for the current topic: Web Services Security (WSS)

More on the general topic: Security and authorization

Web Services Security (WSS)

Read more free articles on this site

Search this site for more articles

Browse this site for more articles

Related recent articles from Google News