In this section of the
From the bare bones stateful packet-inspection engine to sophisticated application-layer proxy firewalls, firewall vendors are constantly adding new features to keep malicious hackers at bay and prevent harmful activity. Unfortunately, several firewalls on the market today are still behind the curve when it comes to securing XML messages and Web services: Enter the XML firewall.
In this tip, learn more about the XML firewall, which specializes in securing XML data and Web service transports to enforce policy across the enterprise. Learn about the security features and capabilities of the XML firewall as well as the primary differences between an XML firewall and a different firewall.
Traditional firewalls work well with traditional traffic, but screening streams of data like XML requires a shift in technology in order to ensure the security of XML traffic, making an XML firewall one essential piece of the puzzle for making Web services secure.
This tip will discuss the importance of an XML firewall in relation to Web services security, as well as highlight some of the features and capabilities of an XML firewall, such as deep-level data inspection, compared to the more traditional firewalls.
Enterprises that are building XML-based Web applications and Web services are increasingly turning to the Security Assertion Markup Language (SAML) to communicate identities and authorization information, making it imperative for organizations to protect themselves from attacks at the XML protocol level, the SAML protocol level and at the level of the application itself. An XML firewall can be an adequate security tool in protecting multi-layered systems.
Here, Richard E. Mackey Jr. discusses the design of the XML firewall, XML and SAML fundamentals, the security risks and threats associated with both SAML and XML, and how an XML firewall will help organizations guard against those risks.
This was first published in February 2011