User Name Password Register
DaniWeb IT Discussion Community
Home
Forums
Tutorials
Code Snippets
Blogs
Link Directory
All
What is DaniWeb IT Discussion Community?
You're currently browsing the RSS, Web Services and SOAP section within the Web Development category of DaniWeb, a massive community of 426,394 software developers, web developers, Internet marketers, and tech gurus who are all enthusiastic about making contacts, networking, and learning from each other. In fact, there are 2,281 IT professionals currently interacting right now! Registration is free, only takes a minute and lets you enjoy all of the interactive features of the site.
Join our community!
Please support our RSS, Web Services and SOAP advertiser: Programming Forums

soap security

Join Date: Jan 2007
Posts: 5
Reputation: Artemis is an unknown quantity at this point 
Rep Power: 0
Solved Threads: 0
Artemis Artemis is offline Offline
Newbie Poster

Re: soap security

  #3  
Jan 31st, 2007
Actually I am well versed in security. I have been programming for over 20 years. what I am not sure about is how to secure a soap/web server.

What you are saying is you believe ssl (which would handle the encyption) along with authentication headers should be enough. I do not know enough yet to disagree but have a couple of questions...

what about denial of service attacks?
do you think a digest (hash key) would be needed for integrity?

what I meant by a soap firewall is basically a process (or dll loaded by the web server...not sure) that accepts all soap/xml requests and does the validation. if it passes the security measures then it lets it go to the server. otherwise it rejects it.

any thoughts/comments from anyone is truly appreciated.
Reply With Quote  
Advertising Opportunities on DaniWeb
Contact Us - Newsletter Archive - Sitemap - Privacy Statement
All times are GMT -4. The time now is 1:13 pm.
Forum system based on vBulletin Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
©2003 - 2008 DaniWeb® LLC