Presentation is loading. Please wait.

Presentation is loading. Please wait.

Prabath Siriwardena – Software Architect, WSO2. Patterns Standards Implementations Plan for the session.

Published byWesley Lambert Modified over 9 years ago

Similar presentations

Presentation on theme: "Prabath Siriwardena – Software Architect, WSO2. Patterns Standards Implementations Plan for the session."— Presentation transcript:

1 Prabath Siriwardena – Software Architect, WSO2

2 Patterns Standards Implementations Plan for the session

3 Recurring Problems

4 Patterns Authentication Patterns Confidentiality Patterns Authorization Patterns

5 1995 1997

6

7 1999

8 2004

9 2005 SAML2 Web SSO

10 2008/May

11 Authentication Patterns Direct Authentication Brokered Authentication

12 Basic Authentication Mutual Authentication 2-legged OAuth Direct Authentication for Web Services Transport Level

13 UsernameToken Profile with WS-Security Signing – X.509 Token Profile with WS- Security Direct Authentication for Web Services Message Level

14 Mutual Authentication 2-legged OAuth Brokered Authentication for Web Services Transport Level

15 WS-Trust / STS WS-Federation Brokered Authentication for Web Services Message Level Signing – X.509 Token Profile with WS- Security Kerberos Token Profile for WS-Security Resource STS

16

17 2006/April

18 2006/June

19 2008/2009

20

21

22 2007/Dec

23

24 Authorization Patterns Direct Authorization Delegated Authorization

25 Authorization Patterns Direct Authorization Delegated Authorization ActAs in WS-Trust 1.4

26 2005/Feb

27 Message Interceptor Gateway Pattern Trusted Sub System Pattern Security Solution Patterns Message Level

28 UsernameToken Profile SOAP Security Message Level

29 X.509 Token Profile & Key Referencing Message Level SOAP Security Key Identifiers Direct References

30 Symmetric Binding Vs Asymmetric Binding Message Level SOAP Security

31 Message Level SOAP Security WS-Security secures SOAP – focuses on message level security Focuses on a single message authentication model Each message contains everything necessary to authenticate it self Suitable for a coarse grained messaging in which a single message at a time from the same requestor is received WS – Secure Conversation

32 Message Level SOAP Security WS – Secure Conversation What SSL does at the transport level in point-to-point communication, WS-SecureConversation does at the SOAP layer Removes the need of individual SOAP message carrying authentication information. Establishes a mutually authenticated security context in which a series of messages are exchanged. Uses public key encryption to exchange a shared secret and then onwards uses the shared key

33 WS-Trust Message Level SOAP Security

34 Sender Vouches – Subject Confirmation Message Level SOAP Security

35 Message Level SOAP Security Holder-of-Key – Subject Confirmation

36 WS-Security Policy Message Level SOAP Security

37

Download ppt "Prabath Siriwardena – Software Architect, WSO2. Patterns Standards Implementations Plan for the session."

Similar presentations

A brief look at the WS-* framework Josh Howlett, JANET(UK) TF-EMC2 Prague, September 2007.

A brief look at the WS-* framework Josh Howlett, JANET(UK) TF-EMC2 Prague, September 2007.
WS – Security Policy Prabath Siriwardena Director, Security Architecture.

WS – Security Policy Prabath Siriwardena Director, Security Architecture.
A Public Web Services Security Framework Based on Current and Future Usage Scenarios J.Thelin, Chief Architect PJ.Murray, Product Manager Cape Clear Software.

A Public Web Services Security Framework Based on Current and Future Usage Scenarios J.Thelin, Chief Architect PJ.Murray, Product Manager Cape Clear Software.
Portable Identity & WS - Trust Prabath Siriwardena Director, Security Architecture.

Portable Identity & WS - Trust Prabath Siriwardena Director, Security Architecture.
Integration Considerations Greg Thompson April 20 th, 2006 Copyright © 2006, Credentica Inc. All Rights Reserved.

Integration Considerations Greg Thompson April 20 th, 2006 Copyright © 2006, Credentica Inc. All Rights Reserved.
Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.

Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
WS-Security TC Christopher Kaler Kelvin Lawrence.

WS-Security TC Christopher Kaler Kelvin Lawrence.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
Core Web Service Security Patterns

Core Web Service Security Patterns
Web Service Security CSCI5931 Web Security Instructor: Dr. T. Andrew Yang Student: Jue Wang.

Web Service Security CSCI5931 Web Security Instructor: Dr. T. Andrew Yang Student: Jue Wang.
Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.

Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.
Web services security I

Web services security I
Prashanth Kumar Muthoju

Prashanth Kumar Muthoju
GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.

GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.
Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.

Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.
SAML-based Delegation in Shibboleth Scott Cantor Internet2/The Ohio State University.

SAML-based Delegation in Shibboleth Scott Cantor Internet2/The Ohio State University.
Security COMP6017 Topics on Web Services Dr Nicholas Gibbins – 2012-2013.

Security COMP6017 Topics on Web Services Dr Nicholas Gibbins –
Web Service Standards, Security & Management Chris Peiris www.ChrisPeiris.com.

Web Service Standards, Security & Management Chris Peiris

Similar presentations

Ads by Google