出版社:International Association for Computer Information Systems
摘要:Web Services technology is gaining prominence in industry and is displacing established standards such as Electronic Data Interchange (EDI for B2B transactions). The highly distributed nature of Web Services, and the tight tie between the network and application layers, creates new vulnerabilities requiring Information Security professionals to re-evaluate their network and application security planning. This paper reviews Web Services technologies, challenges to their implementation, demonstrates nine ways that traditional assumptions regarding security are inapplicable to Web Services, and suggests possible solutions to these problems.
关键词:Network Security; Web Services; Web Application Security; Security Architecture;IS technologies; Enterprise Resource Planning
