Welcome Guest. | Log In| Register | Membership Benefits

XML Gateways

We tested three security devices and, although they all impressed, our top pick edged past the others thanks to stellar performance, flexibility and integration. Find out which one it is.

By Lori MacVittie
Network Computing
May 3, 2005 12:00 AM

Firewall Blowout

Analyzing the Threat-Management Market
Review: Deep Inspection Firewalls
Review: XML Gateways
Review: Branch Office Devices
Reader Epoll Results

Read More

Defense Mechanisms
XS40 XML Security Gateway 3.0 Ups the Ante
Reactivity's 2400 Series Gateway and Manager with XOS 4.1
Enemy at the Gateway
Web Services Security

At first, we were frustrated with the low turnout, but the reasons cited point to an industrywide problem: What are these products, and what should they be called? See "The Name Game,", for our take.

Although most conventional firewalls can provide user-based authentication and authorization to services, they're rarely set up to do so; rather, these products control generalized access to services, and their packet-processing mechanisms are not data-aware. XML firewalls, however, must be data-aware to keep unwanted content and users from accessing potentially sensitive services. Although XML over HTTP and even SOAP can be controlled using conventional authentication means, HTTP Basic Auth, for example, SOAP and Web services cognoscenti prefer to use Web services-specific mechanisms, such as WS-Security 1.0, which require authentication and authorization mechanisms to reach into the payload and extract credentials.

For our test scenario, we used NWC Inc.'s Web services deployment, served by IBM WebSphere 6.0 and providing SOAP interfaces to order-entry and tracking functionality. After capturing both requests and responses from all operations, we served them up on our Spirent WebReflector to remove any application bottlenecks. We throttled client traffic back to no more than 2,000 concurrent users, a reasonable number--on the high end for most Web services infrastructures but realistic for an enterprise Web services application. The types of attacks we ran are detailed in "How We Tested XML Firewalls,".

Page 2: Back to Basics

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 Next Page »

Subscribe to RSS

» Write To Editor
» Reprint This Article
» Download Top Reports

CAREER CENTER

Ready to take that job and shove it?
Open | Close

Post Your Resume

Employers Area

News & Features

Blogs & Forums

Career Resources

Browse By:
State | City

SPONSOR

RECENT JOB POSTINGS

Featured Jobs:

BP seeking Regional Desktop Coordinator in Houston, TX

Agilent Technologies seeking Marketing Manager in Melbourne, AU

Advancement Project seeking Junior Web Developer in Los Angeles, CA

Johns Hopkins Univ Carey Business School seeking Asst Dean for IS in Baltimore, MD

City of Westland seeking MIS Director in Westland, MI

For more great jobs, career-related news, features and services, please visit our Career Center.

CAREER NEWS

10 Search Engines You Don't Know About

Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Yahoo Profits Fall 23%, Cuts 1,000 Jobs

Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.

Featured News White Paper

Web Reputation Filters�Battle the Latest Web Malware Threats
IronPort Web Reputation Filters� are designed to combat the dynamic nature of malware. Today�s threats are no longer found as an email attachment. Instead, they are well orchestrated � utilizing social engineering techniques and target legitimate websites. As the first line of malware defense, IronPort Web Reputation Filters analyze more than 5 billion Web transactions daily � blocking up to 70 percent of malware at the connection level, prior to signature scanning. By leveraging its global footprint of URL traffic data IronPort�s Web reputation system is able to offer an industry-leading 60 percent higher malware catch rate than traditional signature scanners. read more