Isuru has written an article on "WS-Security Processing Models". He started the article by introducing different attacks on Web services. Then he has explained the importance of rejecting invalid messages as early as possible. This helps to reduce damage that can be done by DOS attacks. Here invalid message refers to message which does not conform to the WS-SecurityPolicy.
This article is published on the Oxygen Tank Library. Here is the link to this article.
http://wso2.org/library/articles/ws-security-processing-models-along-ws-securitypolicy-1
Thursday, January 15, 2009
Subscribe to:
Posts (Atom)