Forum JWSS SDK v1.0 allows developers to administer and apply security policies within J2EE compliant Application Servers using a declarative security model and APIs for XML message authentication and authorization. The Application Server is then responsible for applying these security constraints to the code at runtime. Adding XML security within business logic prevents transactions from bypassing third-party enforcement points that would violate regulatory compliance or work flow security. Companies should complement this developer-centric approach with an "interception" model using a SOA Gateway or XML Firewall within a DMZ (Demilitarized Zone) for a global and scalable SOA security and acceleration strategy.Unfortunately, the site itself doesn't say exactly where these APIs are held, unless they're distributed across each of the security products, which have free evaluation downloads available. One other handy reference from the site is a white paper entitled "An Adaptive Approach to Web Services Security," even though this paper was written in November 2004. (What's truly sad is that despite its age, it's still relevant.)
Forum Systems has released "Java Web Services Security Software Development Kit v1.0." This project offers developers "a comprehensive library of application programming interfaces (APIs) to leverage in coding Web Services applications."
- Posted by: Joseph Ottinger
- Posted on: June 05 2006 08:02 EDT
- Re: Java Web Services Security Software Development Kit v1.0 by Roland Altenhoven on June 06 2006 10:23 EDT
... Unfortunately, the site itself doesn't say exactly where these APIs are held ...Maybe, someone from "Forum Systems" gives a tip, where are more informations or a download-site available for this Development Kit ... Roland http://www.soa-architects.de