SOW - PowerPoint PPT Presentation

About This Presentation
Title:

SOW

Description:

SOW & WSE. Tsai, Meng-Ru. Consultant. Microsoft Technologies Centre. Microsoft Taiwan Corp. ... A set of components which can be invoked, and whose interface ... – PowerPoint PPT presentation

Number of Views:60
Avg rating:3.0/5.0
Slides: 23
Provided by: spea64
Category:
Tags: sow | sow

less

Transcript and Presenter's Notes

Title: SOW


1
SOW WSE
  • Tsai, Meng-Ru
  • Consultant
  • Microsoft Technologies Centre
  • Microsoft Taiwan Corp.

2
Agenda
  • Service-Oriented Architecture Introduction
  • Web Service Introduction and WSE

3
SOA
  • Service-Oriented Architecture
  • A set of components which can be invoked, and
    whose interface descriptions can be published and
    discovered (W3C).
  • Services can be invoked, published and
    discovered, and are abstracted away from the
    implementation using a single, standards-based
    form of interface. (CBDI)

4
Services Everywhere
5
Form-Factor Friendly
Doesnt require centralized services
Unlocks rich client assets
Empowers users with high-end communications
Low-cost devices via the PC
Flexible, end-to-end security
Dynamic protocol negotiation
6
SOA Business Process Centric!
7
Evolution Phases
8
How to approach SOA?
  • Be Incremental
  • Crawl, Walk, Run
  • Identify key services for building a connected
    system
  • Build Web service façades in front of them
  • Exploit the value of those services with Smart
    Clients and Business Processes
  • Evolve apps behind façade as necessary

9
Agenda
  • Service-Oriented Architecture Introduction
  • Web Service Introduction and WSE

10
Web Services
  • See What Web Services Can Do for You
  • Built on industry standards, Web Services provide
    a means for software to interoperate across
    programming languages, platforms and operating
    systems.
  • Loosely Coupled
  • Popular Communication
  • Generic Data Format
  • Classic Web Service limitations
  • No WS- implementations
  • Lack of non-functional requirements of SOA
    (Security, Transaction, Large transmission data,
    Stateful Session, etc)

11
Web Service Enhancements
  • WSE is an extension to the .NET Framework
  • Provides support for several WS- specs
  • Can be used to extend ASMX behavior
  • Fully integrated with Visual Studio 2005
  • Fully supported product with customer support

12
Communication Security
  • Authentication
  • Message Integrity
  • Confidentiality

13
Secure CommunicationProtocol-level security
Encrypted
Encrypted
  • Sender must trust intermediaries
  • Message decrypted at intermediaries
  • Encrypts the entire message
  • Restricts protocols that can be used

14
Secure CommunicationMessage-level security
  • End-to-end message security independent of
    transport
  • Supports multiple protocols and multiple
    encryption technologies
  • Can encrypt parts of the message
  • Sender need only trust ultimate receiver
  • The signature is stored with the data

15
Turnkey Security Scenarios
  • Based on industry best practices
  • Each scenario represented as an assertion
  • UsernameOverX509
  • AnnonymousOverX509
  • UsernameOverTransport
  • Kerberos
  • MutualX509

16
Policy Pipeline Architecture
Policy assertions transform the message
Policy describes an input pipeline
Input Soap Message
Custom
Tracing
Security
Application Processing
Output Soap Message
Security
Custom
Tracing
and an output Pipeline
17
Message-Level Security for Large Amounts of Data
Message Transmission Optimization Mechanism (MTOM)
18
Sessions with Secure Conversation
  • Asymmetric keys (X509 Certificates) are slow for
    multiple messages
  • WS-SecureConversation defines a Security Context
    Token (SCT)
  • A messaging optimization
  • Faster for multiple calls (client makes gt 2)

Request for SCT
SCT Issued to client
Client
Server
Multiple messages Signed and encrypted with SCT
19
WSE 3.0 Session Management
  • Stateful SCTs
  • WSE 2.0 required the service to maintain an SCTs
    state
  • In WSE 3.0 the state may be preserved with the
    SCT
  • Enables SCTs to re-establish the session
  • SCT Cancellation
  • In WSE 2.0 SCTs have a timeout
  • WSE 3.0 provides the ability to cancel a session

20
Re-Establishing Sessions
SCT State
SCT State
Request for SCT
SCT Issued to client
Session Re-Established
Client Request
Multiple messages Signed and encrypted with SCT
Server
Client
21
(No Transcript)
22
Which Specs? WS-? W3C?
  • Reliable Messaging Specifications
  • WS-ReliableMessaging
  • Transaction Specifications
  • WS-Coordination
  • WS-AtomicTransaction
  • WS-BusinessActivity
  • Metadata Specifications
  • WSDL
  • UDDI
  • WS-Policy
  • WS-PolicyAssertions
  • WS-PolicyAttachment
  • WS-SecurityPolicy
  • WS-Discovery
  • WS-MetadataExchange
  • XML Specifications
  • XML
  • Namespaces in XML
  • Messaging Specifications
  • SOAP
  • WS-Addressing
  • MTOM (Attachments)
  • WS-Eventing
  • Security Specifications
  • Web Services Security SOAP Message Security
  • Web Services Security UsernameToken Profile 1.0
  • Web Services Security X.509 Certificate Token
    Profile
  • WS-Security
  • WS-SecureConversation
  • WS-Trust
  • WS-Federation
  • WS-Federation Active Requestor Profile
  • WS-Federation Passive Requestor Profile
  • Web Services Security Kerberos Binding
  • Specification Profiles
  • Devices Profile
  • Source http//msdn.microsoft.com/webservices/unde
    rstanding/specs/wslicensing.aspx
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "SOW" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!