xml-dev - RE: [xml-dev] Web Services Best Practice (was: Interesting XML-DI ST-APP

RE: [xml-dev] Web Services Best Practice (was: Interesting XML-DI ST-APP

[ Lists Home | Date Index | Thread Index ]

To: 'Michael Brennan' <Michael_Brennan@Allegis.com>, "'Roger L. Costello'" <costello@mitre.org>, xml-dev@lists.xml.org
Subject: RE: [xml-dev] Web Services Best Practice (was: Interesting XML-DI ST-APP thread)
From: "Bullard, Claude L (Len)" <clbullar@ingr.com>
Date: Thu, 10 Jan 2002 15:04:49 -0600

A good article has appeared on XML.COM that takes all of the 
web service specs one at a time and shows how they fit into 
various vendor architectures.  I note several xml languages 
devoted to security issues.   Are any of these good candidates 
in your opinion and experience?  One way to improve shoddy 
practice is with a good standard. (oh... not that again..).

len

-----Original Message-----
From: Michael Brennan [mailto:Michael_Brennan@Allegis.com]

I would add that implementors must take appropriate measures to address
security factors, such as confidentiality and non-repudiation. One of my big
fears is that the web services "revolution" will bring us sensitive
transactions flying around the net in clear text without adequate
authentication. I know for a fact that the lack of understanding of security
concerns among most developers is leading to some truly frightening systems,
and the internet today is like a global piece of swiss cheese with gaping
security holes all over the place.

Follow-Ups:
- Re: [xml-dev] Web Services Best Practice (was: Interesting XML-DI ST-APP thread)
  - From: Gavin Thomas Nicol <gtn@rbii.com>

Prev by Date: RE: [xml-dev] Web Services Best Practice (was: Interesting XML-DIST-APP thread)
Next by Date: Web Services Best Practice, summary 3
Previous by thread: SAX2 r2 ... last call!
Next by thread: Re: [xml-dev] Web Services Best Practice (was: Interesting XML-DI ST-APP thread)
Index(es):
- Date
- Thread