TY - BOOK AU - Williams,Walter TI - Security for service oriented architectures SN - 9781466584020 AV - TK5105.5828 .W55 2014 U1 - 005.8 23 PY - 2014/// CY - Boca Raton PB - CRC Press Taylor & Francis Group KW - Service-oriented architecture (Computer science) KW - Computer networks KW - Security measures KW - Computer security KW - COMPUTERS / Software Development & Engineering / General KW - bisacsh KW - COMPUTERS / Security / General N1 - "An Auerbach book."; Includes bibliographical references (p. 317-321) and index N2 - "Providing a comprehensive guide to security for web services and SOA, this book covers in detail all recent standards that address web service security, including XML Encryption, XML Signature, WS-Security, and WS-SecureConversation. It also reviews recent research on access control for simple and conversation-based web services, advanced digital identity management techniques, and access control for web-based workflows. With illustrative examples and analyses of critical issues, the book is a solid reference on web service standards, a practical overview for researchers looking for innovative new directions,and a suitable textbook on advanced topics in computer and system security"--; Although integrating security into the design of applications has proven to deliver resilient products, there are few books available that provide guidance on how to incorporate security into the design of an application. Filling this need, Security for Service Oriented Architectures examines both application and security architectures and illustrates the relationship between the two. Supplying authoritative guidance on how to design distributed and resilient applications, the book provides an overview of the various standards that service oriented and distributed applications leverage, including SOAP, HTML 5, SAML, XML Encryption, XML Signature, WS-Security, and WS-SecureConversation. It examines emerging issues of privacy and discusses how to design applications within a secure context to facilitate the understanding of these technologies you need to make intelligent decisions regarding their design. This complete guide to security for web services and SOA considers the malicious user story of the abuses and attacks against applications as examples of how design flaws and oversights have subverted the goals of providing resilient business functionality. It reviews recent research on access control for simple and conversation-based web services, advanced digital identity management techniques, and access control for web-based workflows. Filled with illustrative examples and analyses of critical issues, this book provides both security and software architects with a bridge between software and service-oriented architectures and security architectures, with the goal of providing a means to develop software architectures that leverage security architectures. It is also a reliable source of reference on Web services standards. Coverage includes the four types of architectures, implementing and securing SOA, Web 2.0, other SOA platforms, auditing SOAs, and defending and detecting attacks UR - http://images.tandf.co.uk/common/jackets/websmall/978146658/9781466584020.jpg ER -