« Current Cost of Cybercrime | Main | Podcast with Arbor Networks: The Evermore Deadly Evolution of Malicious Software »

As often happens with revolutionary new products or services, different standards and technologies often vie for market dominance. An easy example of this could be the battle between VHS and Betamax.

In terms of SOA and security, there seems to be an almost primal disconnect between the two. Essentially, SOA wants information and data sources to be free and fully integrated into all levels of a company’s operations and decision-making, but on the security side, the immediate question is, Information free to whom? Because we all know, cybercriminals thrive on free information.

ebizQ’s own Joe McKendrick, and one of the leading voices on the leading edge of SOA and BI, wrote this excellent blog on the very subject, wondering if security threatened to shut-down SOA altogether.

The standards currently battling for SOA security supremacy are:

1. SAML (Security Assertion Markup Language).
2. WS-Federation
3. WS-Trust

As you can probably guess, all three are incompatible, and while SAML is favored by almost everyone, it is incompatible with Microsoft, which favors WS-Federation.

Andy Dornan wrote this excellent article covering SOA security in great detail for Information Week, and according to him, with SOA in a state of near constant flux, there is long long way to go before a single standard is reached.

And we all know who won the battle between VHS and Beta: DVD. But for how long?

Posted by pschooff in SOA Security |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/2215