Computerworld - A new industry standard is raising hopes for Web services security. In April, OASIS (Organization for the Advancement of Structured Information Standards), a global standards consortium in Billerica, Mass., announced that its members had approved Web Services Security Version 1.0, a status that signifies the highest level of ratification.
WSS builds on security technologies such as XML Digital Signature, XML Encryption and X.509 certificates to provide a standard way of securing Web services message exchanges. The standard provides a framework for companies to apply security technologies such as authentication and authorization in a Web services environment. WSS has garnered broad support from vendors, and proponents say it will lead to increased adoption of Web services.
"[WSS] will become a standard for most Web services," says Ray Wagner, an analyst at Gartner Inc. "I have suggested that organizations developing strategic Web services begin using [the standard] even if they have no current security requirements. This will set the stage for easily adding security as the profile of the service changes."
Raphael Holder, vice president of shared services operations at Northrop Grumman, says his company is tracking the standard.
Read more about App Development in Computerworld's App Development Topic Center.
- Path Selection Infographic Path Selection Infographic
- Hyperconvergence Infographic A wide range of observers agree that data centers are now entering an era of "hyperconvergence" that will raise network traffic levels faster...
- Preparing Your Infrastructure for the Hyperconvergence Era From cloud computing and virtualization to mobility and unified communications, an array of innovative technologies is transforming today's data centers.
- How WAN Optimization Helps Enterprises Reduce Costs If you wanted to break down innovation into a tidy equation, it might go something like this: Technology + Connectivity = Productivity. Productivity...
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources...
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users? All Cybercrime and Hacking White Papers | Webcasts