Sunday, October 21, 2007

SOA Security

The National Institute of Standards and Technology has released a 128-page guide to help organizations understand the security challenges of Web services in service-oriented architecture. Download link

Issues addressed in the publication include:

  • Confidentiality and integrity of data transmitted via Web services protocols.
  • Functional integrity of the Web services requiring the establishment of trust between services.
  • Availability in the face of denial-of-service attacks that exploit vulnerabilities unique to Web service technologies.

Web site dedicated to Service Oriented Security

California Enterprise Architecture Program issues SOA Security White Paper

Free SOA Security E-Book

BPM and Security from James McGovern

Colin White on SOA Security and reuse

Most of these are courtesy of Garry E. Smith