Issue No. 01 - January/February (2006 vol. 4)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2006.23
Jeremy Epstein , webMethods
Scott Matsumoto , Cigital
Gary McGraw , Cigital
The current buzzword of choice among the technical elite (at least those subject to marketing departments) is service-oriented architecture, or SOA (pronounced "SO-uh"). As SOA moves from hype to practice, an opportunity exists to do security right, but a similar opportunity exists for disaster if security is done wrong. This article describes 13 snares that we must avoid to end up with SOA security that makes sense.
service-oriented architecture, SOA, security
J. Epstein, S. Matsumoto and G. McGraw, "Software Security and SOA: Danger, Will Robinson!," in IEEE Security & Privacy, vol. 4, no. , pp. 80-83, 2006.