Deploy Cohesive Web Service Security Bridging Microsoft and Non-Microsoft Platforms
The Microsoft .NET security stack is widely recognized as delivering a tightly integrated Web service development platform offering highly customizeable/built-in Microsoft ASP.NET declaritive methods within Web configuration files. However, as Web services need to be extended across non-Microsoft platforms and to other security domains, a perimeter Security Gateway becomes a complementary add-on. Gateways dramatically simplify deployment of an external threat mitigation model that combats SQL injection, script inject, and a host of other XML content attacks. The Security Gateway also shields Microsoft developers from having to configure WS-Security enablement within other non-Microsoft platforms effectively lowering time to market. In this session, Intel security expert Blake Dournaee outlines the deployment architecture, presents ways to extend .NET security externally, and outlines techniques for scaling/accelerating XML Web services via Security Gateways.