Every living soul is potentially divine

Jainism


Jainism Authors: Bob Gourley, Pat Romanski

Related Topics: Cloud Computing, Sun Developer Journal, Oracle Journal, SOA Best Practices Digest, SOA & WOA Magazine, Java Developer Magazine, Jainism, SOA in the Cloud Expo, CIO/CTO Update, Java in the Cloud

Blog Feed Post

REST Security at JavaOne

We'll be talking about threats and countermeasures for REST Web Services

I'm speaking with Vikas Jain from Oracle at JavaOne (co-located with Oracle Open World this year) on the topic of REST Security.

The session link is below:
http://www.eventreg.com/cc250/sessionDetail.jsp?SID=314100

(or go to the main catalog page and paste the Session ID 314100 into the search form).

We'll be talking about threats and countermeasures for REST Web Services. We will also discuss the various REST authentication schemes being used by Cloud service providers today. Some of these authentication schemes (in particular that used by Amazon Web Services) is as close to an "industry standard" for REST authentication as we have now. Saw what you like about the WS-Security bloat, but at least it is an open standard, whereas for REST authentication there isn't one yet (unless you count HTTP Auth).

But organizations realize that they can gain an advantage by providing a REST API and opening it up to the largest amount of (authenticated) users. So here at Vordel we have customers using our Gateway for REST authentication today, so that they can provide REST authentication and navigate the current world of REST security.

Read the original blog entry...

More Stories By Mark O'Neill

Mark O'Neill is VP Innovation at Axway - API and Identity. Previously he was CTO and co-founder at Vordel, which was acquired by Axway. A regular speaker at industry conferences and a contributor to SOA World Magazine and Cloud Computing Journal, Mark holds a degree in mathematics and psychology from Trinity College Dublin and graduate qualifications in neural network programming from Oxford University.