Computerworld
Home News Blogs In Depth ReviewsWhite Papers Newsletters IT Careers

resource center


Ads by TechWords

See your link here

Newsletter Sign-Up

Receive the latest technology news and information.
Data Management
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
Cloud Computing
View all newsletters




Privacy Policy
 

Weak security taints directory

Fake listings, lack of vetting undermine UDDI

By Lee Copeland
June 18, 2001 12:00 PM ET
Recommended
(4)
Digg
Share/Email

Computerworld - A major industry effort to build an online directory of Web services for business is riddled with embarrassing security problems that have marred its arrival.


Last month's launch of the Universal Description, Discovery and Integration directory, a Yellow Pages-style directory that lets businesses register their Internet services and capabilities online, was intended to drive support for Web services (see story). But lax security by UDDI founders IBM and Microsoft Corp. has permitted the Web-based directory to be populated with fake firms, false links and uninformed participants.


For example, "Loud Speakers Inc." is registered as a Mountain View, Calif.-based firm run by John McLoud, whose public speakers talk at a level higher than 100 decibels. The UDDI also describes Loud Speaker's Web service as juju beads for "warding off evil spirits." The company isn't listed with directory assistance and can't be found on the Web.


As for bad links, the UDDI listing for Oracle Corp. links to a pornography site, not a Web service.


"Microsoft is aware that security is an issue," said Darryl Plummer, an analyst at Stamford, Conn.-based Gartner Inc. "As you open things up, you open up the door for security holes. They're trying to come up to speed in a public forum, and if large controls were in place, it wouldn't take off."


Microsoft officials said controls for vetting companies that register in the UDDI directory would be discussed at a private conference for the registry's adviser group in Atlanta this week.


But beyond the challenge of vetting registrants, the sponsors of the UDDI directory also appear to be facing another problem: uninformed directory members.


Markle Stuckey Hardesty & Bott is listed in the UDDI directory. But David Hardesty, vice president of the Larkspur, Calif.-based e-commerce accounting firm, said he has no idea what the directory is and has no plans to introduce Web services at his company.


"I have no recollection of registering," said Hardesty. "We haven't used it, and we don't know anything about it, but that's not to say that we didn't sign up for it. There are lots of things out there on the Web, but you just can't remember everything."


Bob Gill, owner of Shrimp Landing, a seafood wholesaler in Crystal River, Fla., said he agreed to register after responding to an e-mail solicitation from IBM.


But Gill said he doesn't see himself using or offering Web services from the company's one-page Web site.


"I'm sticking my neck into an area for which I know nothing about," said Gill. "First, I need to get my site up and running. Then I'll think about it."



Recommend Digg Twitter ShareThis
Email Print Send Feedback Reprints
Jump to comments

Data Mining

Additional Resources

WHITE PAPER
Do You Know the 7 Steps to Successful Data Migration?
Approximately 60 percent of data migration projects overrun time or budget, while some fail completely. Download this white paper, "Enhancing Your Chance for Successful Data Migration," to learn the critical steps you need to take to execute a data migration project with minimum cost and risk to your business.
WHITE PAPER
Total Cost of Ownership of Server Computing Vs. PCs
Read the Gartner research note to learn why the TCO of a server-based computing deployment used to deliver all applications to users is around 50% lower than that of an unmanaged desktop deployment.
WHITE PAPER
IDC White Paper: Linux in a Global Recession
Economic downturns have a tendency to accelerate emerging technologies, boost the adoption of effective solutions, and punish solutions that are not cost competitive or that are out of synch with industry trends. This IDC White Paper presents the results of an IDC survey of 330 companies in Western Europe, Asia/Pacific and the Americas that measures the receptiveness to Linux and takes into consideration changing views driven by the disruptive economic environment that businesses face today.

White Papers & Webcasts

Data Grids & SOA
Get this paper now!  

Top to Bottom Performance Management Excellence at the City of Chicago
View now.

Forrester Consulting - Optimizing Users and Applications in a Mobile World
Learn how to successfully deploy a WAN optimization solution that is specifically tuned for a mobile environment!  

Effectively Implementing Datacenter Automation
Effectively select and deploy the best datacenter automation solution today!

Faster, Cheaper and Easier to Maintain
Can you afford not to upgrade your servers to today's advanced, energy-efficient technologies?  

Aligning IT to Business: The Rising Importance of Application Delivery Networks
Application Delivery Networking (ADN) will play a vital role in helping enterprises incorporate strategic technologies to achieve business initiatives.

The State of PCI DSS Compliance at Organizations Today
Download this resource today!  

Strategies for Driving Down IT Support Costs with Lite ITIL Practices
View this now!

IDC Research Report: The Business Value of Consolidating on Energy-Efficient Servers
Download this Resource Now!  

Mitigate Risk, Lower Costs and Improve Network Efficiency
Create a stable IP network that not only meets today's challenges, but is flexible enough to also meet future demands.

All White Papers | All Webcasts

Computerworld Reports

8 Questions To Ask About Your Intrusion-Security Solution

Computerworld Technology Briefings IT Service Management

Computerworld Briefing - Analytics: The Art and Science of Better

All Computerworld Reports
 

SAS Information Management Kit

SAS is the leader in business intelligence and analytical software and services. Only SAS offers leading data integration, storage, analytics and business intelligence applications within a comprehensive enterprise intelligence platform. SAS gives 97 of the top 100 companies in the 2007 Fortune 500 THE POWER TO KNOW®.
Webcast: The Information Management Roadmap
Imagine high-quality data, cleansed, analyzed and delivered throughout your organization. Join Computerworld, IT visionary Thornton May and a panel of experts to learn how SAS® can help you make it happen.

View this webcast 
Research Report: Information Management Initiatives at Midsize and Large Organizations
See the top-line results of this Computerworld sponsored survey to see how IT and business leaders are handling information management implementation.

Download this report 
White Paper: Information Management: Better Information for Winning Decisions.
This white paper explains how the SAS Information Evolution Model aids companies in assessing how they use this information to make strategic decisions and drive business.

Download this white paper 
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.