Web Services Security w/Ws
Uncovers the steps software architects and developers will need to take in order to plan and build a real-world, secure Web services system Authors are leading security experts involved in developing the standards for XML and Web services security Focuses on XML-based security and presents code examples based on popular EJB and .NET application servers Explains how to handle difficult-to-solve problems such as passing user credentials and controlling delegation of those credentials across multiple applications Companion Web site includes the source code from the book as well as additional examples and product information
Format:Paperback
Language:English
ISBN:0471267163
ISBN13:9780471267164
Release Date:January 2003
Publisher:John Wiley &Sons
Length:468 Pages
Weight:1.60 lbs.
Dimensions:9.3" x 1.1" x 7.5"
Related Subjects
Business Business & Investing Business & Management Certification CompTIA Computer Science Computers Computers & Technology Education & Reference Encryption Languages & Tools Mathematics Network Security Networking Networks, Protocols & APIs Programming Science & Math Security & Encryption Software Design & Engineering Software Design, Testing & Engineering Software Development Web Development & Design Web ServicesCustomer Reviews
2 ratings
Good Perspective on Securing Web Services Apps
Published by Thriftbooks.com User , 22 years ago
Mastering Web Services Security provides a valuable enterprise perspective on building secure Web Services applications. Rather than focusing on a single technology like .NET or Java, the book provides useful real-world guidelines for building Web Service based systems that use many different products.Some previous reviews of this book thought that EASI was exclusively a description of the product from the authors' company. I didn't see it that way -- in fact, I didn't see any specific details describing vendor products based on EASI. I viewed EASI more as an architectural technique that can be applied to many vendor products. Different Web Services vendors of Service Oriented Architectures (SOAs) offer frameworks that look like EASI, which makes this book useful when evaluating those alternatives.
good for developers of complex secure WS applications
Published by Thriftbooks.com User , 22 years ago
The book does a great job explaining how to build non-trivial WS systems that are secure from end to end. Instead of limiting the material to descriptions of SOAP-related technologies and their security (this is what the other books I've read on WS security do), the authors first explain how to secure quickly a simple homogenous (M$-based) WS application, then point out the problems with such a simple-minded approach, and then devote the rest of the book to the question of securing complex heterogeneous WS applications by putting all necessary pieces together. The first part also has a good introduction into the building blocks for WS security solutions, including not only SOAP and XML security, but also security of the underlying middleware technologies. Here, they could do a better job on going into more details about WS-Security spec and its friends. In the second part, they show how to use those building blocks together. Again, chapters on security of Java-based WS and the security interoperability lack a good structure and some times are just confusing.From reading the book, it became clear to me that WS security is yet another instance of the old problem of enterprise security integration, although with a SOAP twist. Therefore, many methods from middleware security can be used for securing WS applications. I would recommend reading this book only to those who build complex heterogeneous WS applications.
Copyright © 2025 Thriftbooks.com
Terms of Use | Privacy Policy | Do Not Sell/Share My Personal Information | Cookie Policy | Cookie Preferences | Accessibility Statement
ThriftBooks ® and the ThriftBooks ® logo are registered trademarks of Thrift Books Global, LLC
ThriftBooks ® and the ThriftBooks ® logo are registered trademarks of Thrift Books Global, LLC
