Full Visibility of Web Services for SOA Governance How Vordel provides realtime visibility of Web Service performance metrics, message throughput and ensures conformance with Service Level Agreements
Bridging the gap between old and new is a challenge we all have been grappling with forever. It’s inevitable that the “IT” thing of today, will be replaced by a new innovation down the road. The caveman started with the rock, which was later replaced by the club, which later gave way to the spear. New advancements did not replace the previous technology entirely; rather it simply redefined more appropriate uses. For example, stones are ideal to craft spear points, and clubs when laced with leather and curved stones proved invaluable for digging. Thankfully, this innovation continues to propel society forwards, but it often leads to confusion for “traditionalists” who find themselves unwilling to adopt or change. So, what does all this have to do with technology? Plenty, read more to find out why.
Web Services, those discreet re-usable pieces of code we find everywhere nowadays, are becoming even more ubiquitous within Information Technology Departments for a very good reason, Because they work. Also, in theory, they go a long way towards reducing application development costs. The challenge that Web Services has is that they aren’t very intelligent. Let me provide you with a quick example that will illustrate the problem.
Let’s say that you’re an information service provider and your customers access information through a Web Service that you’ve built. It’s a pretty straightforward process: build the web service, make it available, (validate identities and access – I won’t get into that right now) and let the good times roll. The challenge begins when you want to add intelligence to your Web service. For example, if the customer is a Platinum Subscriber then make all of this information available. However, if they are buying a single report without an Annual Subscription, then you want to only make section 1 & 3 available. Without intelligence, you quickly realize that every possible permutation will lead to the need for a new/modified web service. The inevitable proliferation of web services will become a challenge to keep track of and a nightmare to manage the difficulty of applying code revisions or updates to each web service.
Wouldn’t it be more efficient if you could just build a single web service and simply apply rules that would remove or redact information that fell outside of the rules. Come to think of it, that almost sounds like the kind of capability you would find in some government conspiracy spy novel. Well, as is usually the case, the truth is stranger than fiction; if you place a Gateway in front of a Web Service you can do exactly that. A Gateway is really a high performance Input/Output device that gives you ability to apply rules to network traffic going into and out of the Gateway. Given its capabilities, you can apply everything from simple to sophisticated rules to redact information based upon whatever criteria you define. It’s a very simple and elegant way to solve a vexing problem, and a Gateway will energize your web services without a whole lot of effort.
Financial Services Case Study on Web Service Vulnerabilities. This presentation from the RSA Conference detailing case notes from a vulnerability assessment of a bank’s web services.
In this joint presentation from Vordel and Oracle we present a best practice reference architecture for securing Service Oriented Architectures. The presentation examines how to implement full SOA Policy Governance infrastructure with detailed case study examples.
Business applications handle sensitive data such as personal identifiable information (PII), business transactions, and intellectual property. With the growing adoption of Service Oriented Architecture (SOA), Cloud computing, mobile devices, and rich user interface technologies like AJAX, these sensitive data are being accessed by an explosion of clients via application interfaces such as SOAP Web Services and REST APIs. Vordel Access Gateway is the “front door” for enterprise applications and SOA infrastructure, securing, controlling, and mediating application integration interfaces.
Full Visibility of Web Services for SOA Governance. How Vordel provides realtime visibility of Web Service performance metrics, message throughput and ensures conformance with Service Level Agreements
