Tracking change and innovation in the enterprise software development community
Create REST
-enabled Web Apps
with Project Zero
from IBM.
Plan-driven dev
Environments and
Agile tutorials at the
Better Software
Conference & Expo!
Terracotta:
Scale your
Apps w/ease
Offload the DB:
Learn More!
Rule your SOA
with CentraSite
standards-based
registry/repository
Introducing the
SpringSource
Application Platform:
Next-gen Java
AppServer
Security is all about trade-offs you make with your always limited resources, often a problem when designing a system or an after-thought. Only a few have the expertise to design good security and most development teams have no security expert. This talk focuses on Security Patterns for designing security in architectures, such as Role-based Access Control, Single Access Point, and Front Door.
Spring Security 2.0 has been released after almost two years of development. This new release replaces Acegi Security as the official security module for Spring applications and includes significant enhancements and new features.
Security has become a rising concern in most applications and systems today. Whether you are building small mashups, enterprise applications, or a platform for SOA, there are several issues and approaches that are being discussed. Erica Naone talked about dealing with security in the world of mashups recently while Bob Rhubart and David Garrison from BEA discussed securing the services you deploy.
OASIS is going to hold a 3 day symposium on the topic of "Composability within SOA" in Santa Clara, CA from April 28th to April 30th. Engineers and Scientists from vendors and end-user companies will discuss topics including mashups, Service-Oriented Ajax, SCA, BPEL, SDO, BPM, Web Service Transactions, Data Security in SOA, SOA Reference Architecture...
This article discusses the integration of the grails-acegi plugin with a sample Grails application. As part of this integration, there are three major components which will be used – Groovy, Grails and Acegi Security.
How can you protect a service against detect malicious incoming messages and prevent information disclosure on outgoing messages? In this sample chapter from Arnon Rotem-Gal-Oz' in-progress book SOA Patterns, Arnon explains how to use a Service Firewall to intercept incoming and outgoing messages and inspect them in a dedicated software component or hardware.
ASP.NET authentication and authorization is essentially a solved problem in ASP.NET 2.0 according to .NET guru Josh Holmes. While the built in authorization providers offer 90% coverage, Josh also discusses when you should utilize a custom provider. Join Josh for ASP.NET tips and tricks in this interview done by David Totzke at VSLive Toronto.
InfoQ sits down Mohammad to discuss the myths of SOA, common pitfalls in designing for SOA, J2EE and .NET interoperability and injecting the Security Development Lifecycle into enterprise development lifecycles.
The SAML has emerged as the gold standard for building Cross-Domain SSO solutions and is a key technology in the domain of federated identity management. The basic concepts of SAML as well as a technical synopsis will be presented. What are SAML assertions, attributes, artifacts, bindings and profiles? What problems does SAML solve, how does it all work out in real life...
