You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

WS-SecurityPolicy Decision and Enforcement for Web Service Firewalls

Tags:
firewalls

Overview A known weakness of Web Services is their vulnerability to Denial of Service attacks exploiting XML processing characteristics. To protect Web Services from these attacks, extended validation of SOAP messages - considering WS-Security and WS-securityPolicy - is made. For SOAP security is message oriented, the processing of the security content itself is vulnerable to Denial of Service attacks. Hence, it is necessary to combine WS-Security processing and DoS protection. This paper presents the solution for WS-SecurityPolicybased policy decision within Web Service Firewalls. For this, a technical description and an algorithm is given addressing major parts of policy decision, as well as a proposal for enhancing message signature identification. Further, the paper argues for advancing protection of Web Services by improved policy enforcement.

Further White Paper Details
Publisher	Christian-Albrechts-Universitat zu Kiel	File Format	PDF
Date Published	September 2006
Format	White Papers
Topics	Firewalls, Network Security, Security Tools

Did you find this white paper useful?

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...

Publisher:
Novell

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...

Publisher:
Novell

Secure Desktop On-Demand Webcast

The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...

Publisher:
Novell

Automated Solution Overhauls Tumbleweed Communications’ Software Updating Process

Download this case study from Macrovision to read about Tumbleweed Communications’ success using Macrovision’s FLEXnet Publisher Update Service Module, a Web-based service that proactively delivers software patches, updates, and other...

Publisher:
Macrovision

HP OpenView Operations OVO Firewall Configuration White Paper

This document describes how to setup and configure OVO in a firewall environment. It describes what steps need to be performed on the OVO management server and on the firewall...

Publisher:
Hewlett Packard

Microsoft issues flaw fixes for Outlook and Windows

The issue is specific to the processing of mail that uses the Transport Neutral Encapsulation Format protocol, used in sending messages in Rich Text Format. In security bulletin MS06-003, Microsoft said Outlook and Exchange are flawed in the way...

Spammers targeted with DDoS attack

Lycos is offering its customers a screensaver that helps to launch denial-of-service attacks on spammers' websites - a tactic more commonly associated with hackers or the spammers themselves who abuse networks of compromised machines to send large...

Channel:
WebWatch
Tags:
lycos,
ddos,
spam

Cisco net phones have software flaw

The flaw, which opens the IP phone service up to denial-of-service attacks, was reported by the National Infrastructure Security Co-ordination Centre, a security research group based in the UK. According to the advisory, the vulnerability is caused...

Channel:
Telecoms
Tags:
dns,
dos,
cisco

Hackers take down Lycos anti-spam website

Lycos on Tuesday kicked off its "make love not spam" campaign by offering users a screensaver that helps to launch distributed denial-of-service (DDoS) attacks on spammers' websites. The company said the screensaver uses the idle processing power...

Channel:
WebWatch

American phishing scam uses anti-terrorism hook

The USA Patriot Act, which was passed after the 11 September attacks, gives broad powers to law enforcement to combat terrorism. Similar messages have targeted customers of Barclays, HSBC, Citibank, Wells Fargo, PayPal and other financial companies...

Channel:
Protecting your ID

Junked: Is this the end of spam and spoof email?

In the long run, DomainKeys is more promising than existing anti-spam and anti-phishing technologies, which rely on techniques such as assembling a "blacklist" of known fraudsters or detecting such messages by trying to identify common...

Featured White Papers

Best in Class Organisations Use Packeteers WAN Optimisation Solutions

Independent research from the Aberdeen Group shows that the most successful enterprises are reaping the benefits of the Packeteer solution and are using it for competitive advantage.

Publisher:
Packeteer

Protecting key assets (security)

Key infrastructure elements must be secured against outages, damage and sabotage. Siemens offers comprehensive solutions from healthcare and power generation to water supply, transportation, and industrial production, to telecommunications.

Publisher:
Siemens

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.