Hello
I am a postgraduate student (MSc Computer Applications) at the university of Plymouth doing research for a project concerning security standards with regards to web services. I am posting this here hoping that some of you might be able to answer my questions. I would appreciate any help i could get.
What I am aiming to determine is what security standards companies/developers make use of (as there are many but not a standardised one, ie. XACML and WS-Security)? I am thinking about XML security in particular.
I also aim to find out on what basis this selection is made? Is it possible to make a justified selection, an informed choice?
Do you rely on a third party to make this decision is it easy enough to implement for an individual firm?
The more opinions i get, the better.
Cheers
Thomas
I am a postgraduate student (MSc Computer Applications) at the university of Plymouth doing research for a project concerning security standards with regards to web services. I am posting this here hoping that some of you might be able to answer my questions. I would appreciate any help i could get.
What I am aiming to determine is what security standards companies/developers make use of (as there are many but not a standardised one, ie. XACML and WS-Security)? I am thinking about XML security in particular.
I also aim to find out on what basis this selection is made? Is it possible to make a justified selection, an informed choice?
Do you rely on a third party to make this decision is it easy enough to implement for an individual firm?
The more opinions i get, the better.
Cheers
Thomas