Web services are past the initial marketing hype. Early Web services were
part of experimental one-off projects within a single enterprise department.
Now, larger Web services deployments are moving outside of the enterprise
firewall to better leverage existing business partnerships and value chains.
Larger Web services projects come with a price, however. They are more
complicated to implement and more costly to manage. They require careful
deployment planning throughout the enterprise based on well-established
business processes.
The emerging proliferation of Web services networks presents challenges in
terms of security and management. Enterprise deployments of Web services can
only be successful if business and information technology (IT) managers are
convinced they can systematically control access to Web services, meet
customer service requirements, and monito... (more)
Last month (WSJ, Vol. 4, issue 2), we looked at how Web services should not
depend on specific security environments and rules but should be managed as
part of all of an enterprise's corporate data assets such as Web
applications, ERP systems, and in-house applications.
We recommended that Web services security be integrated with the overall
enterprise security infrastructure at the very beginning of the Web services
deployment phase. This month, we'll look at some of those possible deployment
models.
Deployment Models
There are four deployment models based on the guidelines pres... (more)
Prateek Mishra, Ph.D. has more than ten years experience with enterprise-class distributed systems. He is Director of Technology at Netegrity and works on Strategy and Standards. He was an Editor of the SAML 1.0 specification and is co-chair of the SSTC (SAML) Committee and participates in the WSS (WS-Security) Committee.
David Lucas
Shaul Efraim
Terence Martin Breslin
Cory Marchand
David Hughes
James Carlini
John Iffert
Dan Stolts
Joe Zeto
