xml-dev - Re: [xml-dev] Benefits of SOAP?

Re: [xml-dev] Benefits of SOAP?

[ Lists Home | Date Index | Thread Index ]

To: Dennis Sosnoski <dms@sosnoski.com>
Subject: Re: [xml-dev] Benefits of SOAP?
From: Rich Salz <rsalz@datapower.com>
Date: Sun, 15 Feb 2004 22:10:50 -0500 (EST)
Cc: "xml-dev@lists.xml.org" <xml-dev@lists.xml.org>
In-reply-to: <402EBF99.2040005@sosnoski.com>

> there's limited cross-platform support for WS-Security currently
> deployable, though there have been some demonstration hookups.

In my experience is better than that.  We have customers in
production that regularly interop among our product, IBM, Microsoft,
and some others.

> course, you can also get the same end-to-end message integrity and
> selective data privacy using XML Encryption and XML Signature, which are
> what WS-Security wraps.

It's a subtle point, but unless you use something like WS-Sec, than
you cannot sign arbitrary XML content unless you change every
single schema to include an enveloped XML Dsig.  That's not feasible.
Possible, but not feasible; you really do need WS-Sec and SOAP if you
want to exchange messages with end-to-end content integrity.

        /r$

--
Rich Salz                  Chief Security Architect
DataPower Technology       http://www.datapower.com
XS40 XML Security Gateway  http://www.datapower.com/products/xs40.html
XML Security Overview      http://www.datapower.com/xmldev/xmlsecurity.html

Follow-Ups:
- RE: [xml-dev] Benefits of SOAP?
  - From: "Paul Sumner Downey" <Paul.Downey@whatfettle.com>

References:
- Re: [xml-dev] Benefits of SOAP?
  - From: Dennis Sosnoski <dms@sosnoski.com>

Prev by Date: Re: [xml-dev] US Patent 6,687,897
Next by Date: id proxy
Previous by thread: Re: [xml-dev] Benefits of SOAP?
Next by thread: RE: [xml-dev] Benefits of SOAP?
Index(es):
- Date
- Thread