期刊名称:International Journal of Computer Science & Technology
印刷版ISSN:2229-4333
电子版ISSN:0976-8491
出版年度:2012
卷号:3
期号:2
页码:117-120
语种:English
出版社:Ayushmaan Technologies
摘要:The purpose of the security architecture is to bring focus to the key areas of concern for the enterprise, Since security is a system property it can be difficult for Enterprise Security groups to separate the disparate concerns that exist at different system layers and to understand their role in the system as a whole. This paper provides a gathering framework for understanding design and process considerations; to actions toward improving enterprise security. The security policy describes both what is allowed and not allowed in the system. Security standards should be prescriptive guidance for applications and operating systems. Security in the enterprise needs architecture and design advocates. Security policy and standards are not end goals. The security architecture must define reusable security services that allow developers to not to put end for security experts yet still build a secure system. This document describes a proposed strategy for security within a Web service environment. It defines a Web service security models that defines the working system of several popular security technologies.
