Securing XML Web Services
Join Netegrity and ZapThink for an introduction to the challenges of Web services security and Netegrity’s TransactionMinder solution. You will learn about: Critical Web services security challenges facing IT professionals today Requirements of an enterprise wide Web services security solution How Netegrity TransactionMinder meets these requirements through a centralized, policy based approach to securing Web services, delivering Centralized, policy-based authentication, authorization, and auditing for Web services Fine-grained authorization based on information in the payload of the Web services request Synchronized session management for single sign-on to multiple step transactions Integration with standard Web services frameworks to create a single platform to securely manage a wide variety of Web services environments. AGiLiENCE-122002-ZTZN-1130-1…

Read More

ZapThink Recognizes Forward-Thinking Vendors as "ZapThought Leaders" of XML, Web Services, and Service Orientation
ZapThink Recognizes Forward-Thinking Vendors as “ZapThought Leaders” of XML, Web Services, and Service Orientation ZapThought Leadership program headlines major expansion of ZapThink’s services WALTHAM, MA, September 2, 2003 — Actional Corporation, Ascential Software (NASDAQ: ASCL), Digital Evolution, Flamenco Networks, Infravio, Netegrity (NASDAQ: NETE), Raining Data (NASDAQ: RDTA), Reactivity, Sonic Software, Swingtide, and Westbridge Technology are among the software vendors recognized as “ZapThought Leaders” by ZapThink LLC, the leading industry analyst firm with research focused on XML, Web Services, and Service-Oriented Architectures (SOAs). “To be recognized as a ZapThought Leader, a vendor must be dedicated to helping their customers understand how to use XML, Web Services and SOAs to meet their business needs,” said Jason Bloomberg, Senior Analyst, ZapThink. “We are pleased to recognize so many outstanding vendors as ZapThought Leaders, ” said Ron Schmelzer, Senior Analyst, ZapThink. “The fact that these vendors are committed to helping their…

Read More

Enterprise Identity Management: Essential SOA Prerequisite
On first glance, enterprise identity management and Service-oriented architectures (SOAs) are unrelated initiatives aimed at solving different problems. Identity management involves establishing an enterprisewide IT user directory and policy management infrastructure that coordinates the identification and authentication of users, as well as the policy-based authorization of those users’ activities on systems and applications across the enterprise. Among many other access control functions, identity management enables single sign-on (SSO) for users, allowing them to log in once to access multiple applications across the enterprise. Identity management also provides the policy-based administration capabilities companies need to manage their application security. SOAs are a different kind of initiative. They represent an approach to distributed computing that provides an abstraction layer that exposes application functionality as business-oriented Services that are both location independent and discoverable on the network. As ZapThink has discussed throughout our research, SOAs can help companies embrace heterogeneous IT environments, squeezing…

Read More

Building Security into a Service-Oriented Architecture
Service-oriented architectures (SOAs) based upon Web Services are an evolutionary improvement upon existing IT architectures, primarily because these SOAs offer loose coupling between Service producers and consumers. Loose coupling refers to a level of independence between the participants in a Web Services interaction that allows them to interact on their own terms, without requiring substantial changes on one system when the other changes. Such loose coupling enables an enterprise’s IT infrastructure to be agile in the face of change. Loose coupling, however, while simple to understand, is complex to implement. There are many requirements facing an enterprise’s IT infrastructure that threaten the loose coupling of its architecture, and the most significant of these is security. Because fundamental security principles require a Service to authenticate a consumer, the Service and its consumer run the risk of being tightly coupled, unless the security itself can be handled in a loosely coupled fashion.

Read More

ZapThink: Report Shows Web Services-based Process to Displace Integration Solutions / Implementing Service-Oriented Process Key to Meeting Business Agility Requirements
ZapThink: Report Shows Web Services-based Process to Displace Integration Solutions Implementing Service-Oriented Process Key to Meeting Business Agility Requirements (View More Information…) WALTHAM, MA, April 16, 2003 — As enterprises apply Service-oriented architecture principles to business process management and automation, they will find that such “Service-Oriented Process” solutions will supplant the need for today’s integration solutions, concludes a report published today by ZapThink, LLC, an analyst firm focused on XML, Web Services, and Service-oriented architectures. The report concludes that Service-oriented process tools enable business users to assemble business-oriented Web Services into business processes that are themselves exposed as Web Services. “The success of business depends upon IT systems that are able to deliver functionality that meets business requirements in a flexible, agile way,” explains Ronald Schmelzer, senior analyst at ZapThink, “Yet most corporate IT infrastructures are littered with a heterogeneous array of…

Read More