Overview
Enterprise Web Services Security provides the information developers, application architects, and security professionals need to build security policies and strategies from the ground up in a Web Services environment. Most security books focus on computer, network, or Web Services Security in isolation, relegating the other areas to overview chapters or appendices. This book takes a holistic approach that mirrors the perspective one must have regardless of whether they are planning and implementing the security mechanisms for a Web Service, a Web site, or an enterprise. It details how to secure critical components such as workstations, servers, and networks, the goals behind an enterprise's security policies, the policies an organization should have in place, and how to communicate those policies using WS-Policy Framework and WS-Security Policy. The book also covers various threats and attacks, and the identity management, authentication, authorization, access control, confidentiality, and integrity mechanisms needed to protect messages and transactions, including how to implement and communicate those mechanisms using WS-Security, XML Encryption, XML Signature, SAML, and XACML. The importance of auditing at both the server and network level and how to create trust relationships and domains are also covered. Enterprise Web Services Security explains in detail how to have all your security mechanisms working to successfully thwart attacks and protect assets.
Full Product Details
Author: Rickland D. Hollar ,
Richard Murphy
Publisher: Cengage Learning, Inc
Imprint: Charles River Media
Dimensions:
Width: 18.80cm
, Height: 2.50cm
, Length: 23.10cm
Weight: 0.863kg
ISBN: 9781584504139
ISBN 10: 1584504137
Pages: 408
Publication Date: 27 September 2005
Audience:
Professional and scholarly
,
Professional & Vocational
Format: Mixed media product
Publisher's Status: Out of Print
Availability: In Print
Limited stock is available. It will be ordered for you and shipped pending supplier's limited stock.
Author Information
Rickland Hollar (McLean, VA) is a Senior Applications Architect with the Central Intelligence Agency and has over 30 years experience in the industry. Prior to joining the CIA, he was President of a Virginia based software development firm. He has written articles for various publications, including Web Services Journal. Rick Murphy (Annandale, VA) is a Senior Principal INFOSEC Scientist at Mitretek Systems, a public interest research and development firm. He has over 25 years of experience in the information security field and is an adjunct professor in the University of Virginia's Information Security Management program. Recent publications include papers on open systems security, network firewall configuration, and on access control systems.
