Women in Technology

Hear us Roar



Article:
  WS-Security in the Enterprise, Part 1: Problem Introduction
Subject:   Why not use the standards?
Date:   2005-02-14 05:37:51
From:   dpiliptchouk
Response to: Why not use the standards?

To begin with - those are specifications, they don't provide any functionality by themselves. We could argue over whether or not they will achieve what I'd like, but the critical point is that, at the moment, there exists a wide gap between a set of already published specifications (and even more - on progress), and practical implementations applicable in the field. <p/>
Realistically, I'm not hoping to fill this gap with only this work, and there's already a number of efforts in progress in many places to do just that. I have 2 goals with this series: to develop a lightweight general framework, addressing a subset of a more general problem for at least some people out there; and, along the way, to demistify them by looking into the involved standards from the implementation point(s) of view.
Main Topics Oldest First

Showing messages 1 through 1 of 1.

  • You should aqcuaint yourself with what's out there
    2005-02-14 08:23:59  OConnor [View]

    There are indeed many products that do this type of policy enforcement in the infrastrcture, and they are growing if not exploding. The value proposition for doing this in infrastrcture is overwhelming. Most app dev projects I have ever been on allocated zero time to developing security code, with app security being an afterthought. Now it can be an afterthought...