|
Thursday, August 7, 2008, 11:30 am - 12:30 pm
Speaker:
Andrew Brown, Director, Product Marketing, Amberpoint.
SOA will be a core architecture of the Next Generation Data Center. However, SOA poses several unique challenges for application security. In the NGDC everything moves faster and is more interconnected. Open, self-describing, loosely coupled SOA applications call for exposing critical data across corporate boundaries and eventually to partners, customers and potentially criminals. Enterprises must also contend with a restrictive regulatory environment that increases requirements for secure, auditable accounting throughout the system. For these reasons, security can be seen as the primary limiting factor in the expansion of SOA. To meet these requirements enterprises need to apply flexible, loosely coupled security mechanisms consistently throughout their distributed, heterogeneous, multi-vendor SOA ecosystems. The only way SOA will be secured in the NGDC will be by taking a comprehensive, policy-driven approach to SOA governance, one that matches the scope of the NGDC as well as the scale. Such an approach enables them to "think globally" about security, while letting the system "act locally" to enforce policy.
|
