Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.

Published byBennett Cannon Modified over 8 years ago

Similar presentations

Presentation on theme: "Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies."— Presentation transcript:

1 Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies

2 Legend Implemented Standard Implemented in additional product Security Layer Existing Standard

3 Security Standards for WS XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

4 Popular Solutions Microsoft WCF Sun Metro (JAX-WS + JAXB + WSIT) Apache Axis2 (Rampart + Rahas + Sandesha2) Apache CXF (based on JAX-WS) More: IBM WebSphere WSO2 Web Service Framework BEA WebLogic

5 Microsoft WCF XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

6 Sun Metro XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

7 Apache Axis2 XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

8 Apache CXF XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

9 Common WS-* Stack WS-Addressing WS-Security: SAML, X.509 SAML includes XML Encryption and XML Signature WS-Trust (except Apache CXF) WS-Security Policy (except Apache) WS-Policy (except Apache Axis2) WS-Secure Conversation (except Apache CXF) WS-Reliable Messaging

10 GSI XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

Download ppt "Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies."

Similar presentations

Gridshell Web Services Akylbek Zhumabayev. Content Gridshell Architecture Gridshell Mediator Gridshell Client Gridshell Full Picture Security Patterns.

Gridshell Web Services Akylbek Zhumabayev. Content Gridshell Architecture Gridshell Mediator Gridshell Client Gridshell Full Picture Security Patterns.
Security Standards (…and Competing Standards … and Implementations … and Interoperability) Marty Humphrey Assistant Professor Computer Science Department.

Security Standards (…and Competing Standards … and Implementations … and Interoperability) Marty Humphrey Assistant Professor Computer Science Department.
Unissons nos Talents T O G E T H E RT A L E N T E D 1 Web Services Security – Challenges & Trends Magan Pal Singh Technical Architect, Sopra Group

Unissons nos Talents T O G E T H E RT A L E N T E D 1 Web Services Security – Challenges & Trends Magan Pal Singh Technical Architect, Sopra Group
0 Web Service Security JongSu Bae. 1  Introduction 2. Web Service Security 3. Web Service Security Mechanism 4. Tool Support 5. Q&A  Contents.

0 Web Service Security JongSu Bae. 1  Introduction 2. Web Service Security 3. Web Service Security Mechanism 4. Tool Support 5. Q&A  Contents.
Secure Systems Research Group - FAU 1 Web Services Products and Tools Ingrid Buckley Dept. of Computer Science and Engineering Florida Atlantic University.

Secure Systems Research Group - FAU 1 Web Services Products and Tools Ingrid Buckley Dept. of Computer Science and Engineering Florida Atlantic University.
Content provided under the terms and conditions of the Eclipse Public License Version 1.0 2006.06.12 1 Eclipse Foundation - www.eclipse.org Kathy Chan.

Content provided under the terms and conditions of the Eclipse Public License Version Eclipse Foundation - Kathy Chan.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
Reliable Messaging in the Real World Paul Fremantle Co-chair, OASIS WS-RX TC VP and Founder, WSO2 Inc OASIS Adoption Forum Ditton Manor, October 29 th.

Reliable Messaging in the Real World Paul Fremantle Co-chair, OASIS WS-RX TC VP and Founder, WSO2 Inc OASIS Adoption Forum Ditton Manor, October 29 th.
Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.

Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.
Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.

Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.
© 2007 Charteris plc20 June 2015 1 1 Extending Web Service Security with WS-* Presented by Chris Seary MVP Charteris plc, 39-40 Bartholomew Close, London.

© 2007 Charteris plc20 June Extending Web Service Security with WS-* Presented by Chris Seary MVP Charteris plc, Bartholomew Close, London.
All Contents © 2003 Burton Group. All rights reserved. Federating Identity Management: Standards, Technologies and Industry Trends November 20, 2003 Daniel.

All Contents © 2003 Burton Group. All rights reserved. Federating Identity Management: Standards, Technologies and Industry Trends November 20, 2003 Daniel.
1 WS Technologies III BPEL4WS Roberto Bruni Dipartimento di Informatica Università di Pisa Models and Languages for Coordination and Orchestration IMT-

1 WS Technologies III BPEL4WS Roberto Bruni Dipartimento di Informatica Università di Pisa Models and Languages for Coordination and Orchestration IMT-
Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.

Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.
Module 13: WCF Receive Adapters. Overview Lesson 1: Introduction to WCF Receive Adapters Lesson 2: Configuring a WCF Receive Adapter Lesson 3: Using the.

Module 13: WCF Receive Adapters. Overview Lesson 1: Introduction to WCF Receive Adapters Lesson 2: Configuring a WCF Receive Adapter Lesson 3: Using the.
Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.

Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.
.NET AND JAVA INTEROPERABILITY. Pooyahttp://blogs.msdn.com/pooyad/

.NET AND JAVA INTEROPERABILITY. Pooyahttp://blogs.msdn.com/pooyad/
Nikola Dudar Program Manager Microsoft Corporation Session Code: DTL 311.

Nikola Dudar Program Manager Microsoft Corporation Session Code: DTL 311.
Web Service Standards, Security & Management Chris Peiris www.ChrisPeiris.com.

Web Service Standards, Security & Management Chris Peiris
Web Services and HL7v3 in IHE profiles Vassil Peytchev Epic.

Web Services and HL7v3 in IHE profiles Vassil Peytchev Epic.

Similar presentations

Ads by Google