Enterprise Web Services Security
暫譯: 企業網路服務安全

Rickland Hollar, Richard Murphy

Enterprise Web Services Security
  • 出版商: Charles River Media
  • 出版日期: 2005-09-27
  • 售價: $1,280
  • 語言: 英文
  • 頁數: 1
  • 裝訂: Paperback
  • ISBN: 1584504137
  • ISBN-13: 9781584504139
  • 相關分類: 資訊安全

    • 無法訂購

買這商品的人也買了...

相關主題

商品描述

Description

  • Teaches developers, application architects, and security professionals how to build security policies and strategies in a Web Services environment
  • Covers the underlying protocols and technologies that form the Internet (TCP/IP, HTTP) and Web Services (XML, SOAP, WSDL, UDDI), and the major XML and Web Services standards that are the basis of implementing security in a Web Services environment
  • Explains how to implement security policies and mechanisms in both J2EE and .NET
  • Includes a companion CD-ROM with and all of the source code, references, and figures from the book


The use of Web Services for Business-to-Business (B2B) and Business-to-Consumer (B2C) transactions has created risks that expose critical assets to increasingly greater threats. Enterprise Web Services Security provides the information developers, application architects, and security professionals need to build security policies and strategies from the ground up in a Web Services environment. Most security books focus on computer or network security in isolation, relegating the other areas to overview chapters or appendices. A single-system view of security, however, is not adequate to describe a distributed Web Services-based environment as it causes the developer to have to piece together material from several resources in order to create secure Web sites and services. This book takes a holistic approach that mirrors the perspective developers need to take regardless of whether they are planning and implementing the security mechanisms for a Web Service, a Web site, or an enterprise. It details how to secure critical components such as workstations, servers, and networks, the goals behind an enterprise’s security policies, the policies an organization should have in place, and how to communicate those policies using WS-Policy Framework and WS-Security Policy. Various threats and attacks are also covered, as well as the identity management, authentication, authorization, access control, confidentiality, and integrity mechanisms needed to protect messages and transactions. Enterprise Web Services Security is the one book developers need to make all their security mechanisms work successfully to thwart attacks and protect assets.

 

 

商品描述(中文翻譯)

**描述**

- 教導開發人員、應用架構師和安全專業人員如何在 Web Services 環境中建立安全政策和策略
- 涵蓋構成互聯網 (TCP/IP, HTTP) 和 Web Services (XML, SOAP, WSDL, UDDI) 的基本協議和技術,以及實施 Web Services 環境中安全性的主要 XML 和 Web Services 標準
- 解釋如何在 J2EE 和 .NET 中實施安全政策和機制
- 附有伴隨的 CD-ROM,包含書中的所有源代碼、參考資料和圖示

使用 Web Services 進行企業對企業 (B2B) 和企業對消費者 (B2C) 交易已產生風險,這些風險使關鍵資產面臨日益增大的威脅。《企業 Web Services 安全》提供開發人員、應用架構師和安全專業人員所需的信息,以便在 Web Services 環境中從零開始建立安全政策和策略。大多數安全書籍專注於計算機或網絡安全,將其他領域 relegated 到概述章節或附錄。然而,單一系統的安全觀點不足以描述基於分佈式 Web Services 的環境,因為這會使開發人員必須從多個資源中拼湊材料,以創建安全的網站和服務。本書採取整體方法,反映開發人員無論是在計劃和實施 Web Service、安全機制、網站或企業時所需的視角。它詳細說明如何保護關鍵組件,如工作站、伺服器和網絡,企業安全政策背後的目標,組織應該具備的政策,以及如何使用 WS-Policy Framework 和 WS-Security Policy 傳達這些政策。還涵蓋了各種威脅和攻擊,以及保護消息和交易所需的身份管理、身份驗證、授權、訪問控制、保密性和完整性機制。《企業 Web Services 安全》是開發人員需要的一本書,以使所有安全機制成功運作,以抵禦攻擊並保護資產。

類似商品

最後瀏覽商品 (9)