SOA Security (Part 1)

Login or Register for Dates, Times and to Reply

Thread Tools Search this Thread
# 1  
SOA Security (Part 1)

Tim Bass
Sun, 30 Sep 2007 14:11:44 +0000
While we are on the topic of SOA, or*”modular distributed computing” as many of friends*are calling*SOA these days,*let us*take a moment to visit SOA security.
Many of*the security*issues associated with SOA*come from the fact that security, SOA-style, attempts to replace traditional security*controls with new, open standards.* Most of these new SOA security standards are relatively immature and unproven.*** In addition, the SOA standards that have emerged,*like XML, SOAP, WSDL, and UDDI, *have done little, if anything*to address IT security.
XML, SOAP, WSDL, and UDDI are open standards that enable the transmission and description of data and interprocess communications between systems.**These standards do not address SOA security and, by themselves,*are*simple a*security breach that easily*circumvent firewalls and put organizations at higher risk.
Therefore, as we move*to*”modular distributed computing”*the architecture of*loose coupling has the second order effect of*decreasing*SOA adoption when we get*past the*market*hype and move into the details of how to actually security this loosely coupled monster we are building.
In this series, wearing my CISSP hat,**we will visit many of the key issues in SOA security and talk about why event processing is critical to securing modular distributed architectures.

Login or Register for Dates, Times and to Reply

Previous Thread | Next Thread
Thread Tools Search this Thread
Search this Thread:
Advanced Search

Test Your Knowledge in Computers #9
Difficulty: Easy
A CD-ROM is a type of optical disc that originated in 1982 in South Korea.
True or False?
ARES_PARSE_SOA_REPLY(3) 				     Library Functions Manual					   ARES_PARSE_SOA_REPLY(3)

ares_parse_soa_reply - Parse a reply to a DNS query of type SOA SYNOPSIS
#include <ares.h> int ares_parse_soa_reply(const unsigned char* abuf, int alen, struct ares_soa_reply** soa_out); DESCRIPTION
The ares_parse_soa_reply function parses the response to a query of type SOA into a struct ares_soa_reply. The parameters abuf and alen give the contents of the response. The result is stored in allocated memory and a pointer to it stored into the variable pointed to by soa_out. It is the caller's responsibility to free the resulting soa_out structure when it is no longer needed using the function ares_free_data The structure ares_soa_reply contains the following fields: struct ares_soa_reply { char *nsname; char *hostmaster; unsigned int serial; unsigned int refresh; unsigned int retry; unsigned int expire; unsigned int minttl; }; RETURN VALUES
ares_parse_soa_reply can return any of the following values: ARES_SUCCESS The response was successfully parsed. ARES_EBADRESP The response was malformatted. ARES_ENODATA The response did not contain an answer to the query. ARES_ENOMEM Memory was exhausted. AVAILABILITY
This function was first introduced in c-ares version 1.9.0. SEE ALSO
ares_query(3) ares_free_data(3) 29 May 2012 ARES_PARSE_SOA_REPLY(3)

Featured Tech Videos