Feeds

MS and IBM demo secure Web services

Milestone of sorts

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Web Service interoperability between the Microsoft and IBM environments using tools compliant with the WS-Security specification was successfully demonstrated for the first time earlier this week.

SSL and web server-enforced security is generally considered inadequate when deploying mission critical Web Services on the Net. To address this, IBM and Microsoft helped develop products compliant with the WS-Security specification.

Microsoft worked with CBDI Forum, an independent industry analyst and think tank specialising in Web Services, to show WS-Security based protocols enabling systems from multiple vendors to interoperate successfully.

For its demo, CBDI used the recently released Microsoft Web Services Enhancements (WSE).NET product, together with the alpha release of Web Services Toolkit (WSTK) for IBM WebSphere. With these tools it showed, using signed and encrypted messages, that the applications at both ends of a conversation can have confidence that the sender is authentic and the message has not been tampered with or read by a third party.

Microsoft described the demonstration as a "milestone" along the path to a standards based approach for Web services security.

Striking a more cautious note, the CBDI Forum said the "WS-Security SOAP enhancement is just one aspect of interoperability", albeit an important factor in Web services for the future.

More information here. ®

Intelligent flash storage arrays

More from The Register

next story
Azure TITSUP caused by INFINITE LOOP
Fat fingered geo-block kept Aussies in the dark
NASA launches new climate model at SC14
75 days of supercomputing later ...
Yahoo! blames! MONSTER! email! OUTAGE! on! CUT! CABLE! bungle!
Weekend woe for BT as telco struggles to restore service
You think the CLOUD's insecure? It's BETTER than UK.GOV's DATA CENTRES
We don't even know where some of them ARE – Maude
DEATH by COMMENTS: WordPress XSS vuln is BIGGEST for YEARS
Trio of XSS turns attackers into admins
Cloud unicorns are extinct so DiData cloud mess was YOUR fault
Applications need to be built to handle TITSUP incidents
BOFH: WHERE did this 'fax-enabled' printer UPGRADE come from?
Don't worry about that cable, it's part of the config
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.