Security

The delivery of WSDL and SOAP messages occurs over the HTTP protocol and can therefore be secured using the SSL protocol.

The SOA Gateway runs within the Apache Web Server where it is possible to install the Apache SSL module to secure access to the server.

The SOA Gateway implementation of Apache SSL interfaces with the local security system and allocates a local security context to the unit of work.

On z/OS, for example, an SLL session can be established with the Gateway to provide a secure link to the server. This can then be used to provide a user id and password for RACF, ACF2 or Top Secret either in the HTTP Headers or in the SOAP Headers as appropriate. Ultimately, when there is a demand, it is possible to map a client side SSL Certificate to a RACF/ACF2 or Top Secret user id. Once a user id has been verified, the request will run with this security content until completion. Hence, all data or business logic access will run using the security credential of the original user accessing the service.

As interfacing with the local security system is only a part of the story. Risaris has partnered with Vordel to provide a comprehensive end-to-end security solution. This joint capability ensures all new security standards will be included in the SOA gateway.

<< back