Database Reference
In-Depth Information
As shown in the following diagram, a client can be an SOA Suite, a J2EE container,
or a third-party application. The invocation of the web service is via an SOA Suite
platform. In this scenario, a client can create an authentication policy and propagate
the user credential to the service provider.
In this topic, we are not covering the security for Data at Rest, which provides the
data protection from the system administrators of the SOA Suite platform.
In an enterprise, the security solution for an Oracle SOA Suite is designed and de-
ployed using some of the software and system components listed in this section. It
is an industry-leading practice to select white listing over black listing design options
with these components. The white listing concept is to the block everything and allow
only the known good activities. On other hand, black listing concept is to generally
allow all the activities and only block the known bad activities.
• Enterprise Security Gateway
Oracle Web Service Manager ( OWSM )
Security Assertion Mark-up Language ( SAML )
• WS-security headers for securing BPEL process and SOA Composite
• Oracle security products
• Network Firewall with Intrusion Prevention System ( IPS )
• Web Application Firewall
• Data security in Transit and at Rest
Search WWH ::




Custom Search