Professional Web Services Security / Edition 1

Professional Web Services Security / Edition 1

by Ravi Trivedi, David Whitney, Ben Galbraith, Whitney Hankison
     
 

Web Services is a new paradigm that has evolved over the years. With successful demonstration of its proof of concept, Web Services are gradually moving towards occupying an important mechanism for e-commerce, because of the industry's awareness of its potential for integration. Security is a not only a prime requirement to implement e-business, but also an important… See more details below

Overview

Web Services is a new paradigm that has evolved over the years. With successful demonstration of its proof of concept, Web Services are gradually moving towards occupying an important mechanism for e-commerce, because of the industry's awareness of its potential for integration. Security is a not only a prime requirement to implement e-business, but also an important concern due to the fact that Web Services can penetrate through firewalls.

XML based standards have evolved to cater the security needs in Web Services, in addition to the traditional proven techniques. This book presents secure web services for e-commerce along with their implementation details. This book also talks about the evolving standards in Web Services security, and the future directions they are likely to take.

Who is this book for?

This book is for Web Services developers who need real-world practical information on how to make their Web Services fully secure. It is also useful for security analysts who are responsible for the system's integrity.

  • Concepts of Web Services and security
  • Detailed explanation of XML standards that have evolved to meet the security needs
  • Basic concepts of the proven security principles and new challenges faced in the wake of evolving technology
  • Concepts of security at various layers, including transport layer and application layer
  • Practical security aspects of Web Services around .NET and J2EE
  • Available toolkits and SDKs for implementing security in Web Services


    About the Author:
    Ravi Trivedi is a Software Analyst for Hewlett Packard (HP), Bangalore. He holds a Masters degree in Computer Science from the IndianInstitute of Science (IISc). He is a committer for the open source UDDI4j at www.uddi4j.org and is an expert group member for HP in JAXR (JSR 93). He has been a Team lead for UDDI4j and UDDI Team at HP. Ravi has been involved in developing Web Services infrastructure (UDDI and e-speak) and implemented some of the very first solutions in production using Web Services.

    David Whitney is a developer with a major aerospace subsidiary located in Oklahoma City and has been responsible for design, development, and support for numerous projects ranging from engineering analysis, system security, and e-commerce, using languages as old as the "original" FoxBase, and as contemporary as Java, with efforts in C++, Visual Basic, Active Server Pages, Uniface, SQL Server, and others along the way.

    Besides being an author on Dotnet technologies, Prasad D V is a Senior Accounting and Audit professional (a qualified Chartered Accountant in India) with twenty three years of experience in the field of Financial Consulting and over six years of progressively responsible experience in the design and development of business applications software. He has expertise in the use of Internet technologies and Client Server Applications with excellent command over Java 2.0, ASP, Visual Interdev 6.0, COM, ADO, VB 6.0/5.0, RDO, IIS 5.0, MS SQL Server 2000, JavaScript, VBScript and .NET Technologies. At ASPToday.com and CSharpToday.com he regularly contributes articles on ASP.NET, Security in Dotnet and Component development.

    Murali Janakiraman has been with Rogue Wave for seven years, and is currently the Software Architect for the XML Products team in Corvallis, Oregon. During his tenure at Rogue Wave, Murali has been a developer, senior developer, and Technical lead on almost all of Rogue Wave's database products and XML products. Murali is currently focused on Web Services and related XML technologies. Murali is a member of the W3C XML Protocol working group.

    Andre Hiotis is an independent Technical Architect who enjoys working with leading edge technologies and using them to solve practical problems that benefit individuals, organizations, and society. Currently he is using his experience in developing a P2P Network in the fight for Terrorism that makes practical use of the Semantic Web, Security, P2P, and Wireless in solving an information integration problem.

    Whitney Hankison is a Systems Analyst with the County of Santa Barbara in Santa Barbara, California, USA. She has authored Professional Windows DNA, and Professional VB.Net 1st and 2nd editions with Wrox Press. Her articles are featured on the WebServicesArchitect site and is featured in the book "Web Services Business Strategies and Architectures" by Expert Press.

    Read More

  • Product Details

    ISBN-13:
    9781861007650
    Publisher:
    Wrox Press, Inc.
    Publication date:
    12/13/2002
    Series:
    Professional Ser.
    Pages:
    575
    Product dimensions:
    7.26(w) x 9.10(h) x 1.28(d)

    Table of Contents

    Introduction1
    Ch. 1Web Services7
    Ch. 2Security27
    Ch. 3Authentication Mechanisms61
    Ch. 4PKI107
    Ch. 5SSL139
    Ch. 6XML Signature181
    Ch. 7XML Encryption223
    Ch. 8XKMS261
    Ch. 9SAML303
    Ch. 10XACML355
    Ch. 11WS-Security391
    Ch. 12P3P419
    Ch. 13J2EE Web Services: Case Study453
    Ch. 14.NET Web Services: Case Study499
    App. AToolkits553
    App. BTomcat/Axis Installation557
    App. CTomcat SSL Configuration567
    Index571

    Read More

    Customer Reviews

    Average Review:

    Write a Review

    and post it to your social network

         

    Most Helpful Customer Reviews

    See all customer reviews >