[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Good Security Reference Material
For those that are interested in security for a SOA, I highly recommend the book core Security Patterns, Best Practices and Strategies for J2EE, Web Services, and Identity Management by Christopher Steel, Ramash Nagappan, and Ray Lai. It’s about a thousand pages. For large enterprise government projects getting underway at this point in time, using this book as a starting point for security can save a couple of million dollars. That’s speaking from experience. The W3C web services architecture has some good security reference material as well. http://www.coresecuritypatterns.com/ http://www.w3.org/TR/ws-arch core Security Patterns will explain how to incorporate professional level security into an enterprise system. What you won’t find in the book is how to incorporate what I call military security into an enterprise system. By military I mean the highest level of security you can incorporate into a computing environment. Professional security does not address high assurance computing systems and separation of data at rest which are requirements for military levels of security. Danny __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]