这些签名及其相关过程有一个终极目标,透过使用XML,为Web提供基于伺服器的预设基本安全性服务。
These signatures and their associated processes have as an ultimate goal providing the default basic server-based security services for the Web through the use of XML.
公钥密码启用的安全性服务是基于这样的消息解密机制,即共有密钥只能通过相应的私有密钥才能解密,反之亦然。
The security services that public key cryptography enable are based on the fact that a message encrypted using the public key can only be decrypted by the corresponding private key, and vice versa.
SEA还将负责与编写安全性服务代码的程序员及在部署系统前对其进行测试的安全性系统测试人员合作。
The SEA will also be responsible for working with programmers who have to code security services and security system testers who can put the system through a testing phase before it is deployed.
DocumentManager (MBean):提供文档管理功能,例如,状态管理、验证、转换、文档层安全性服务等等。
Document Manager (MBean) : Provides document management functions, such as state management, validation, transformation, document-level security services, and so forth.
需根据需要将这些策略的职责分配到应用程序、soa安全性服务和SOA组件,从而利用相应的机制来应用这些安全策略并加以执行。
You use mechanisms to apply these security policies and enforce them by assigning responsibility for those policies to applications, SOA security services, and SOA components as needed.
例如,可能会支持按某些条件(如“支持的数据库条目数量”或“安全性级别”等)发现服务。
For example, discovering services by criteria such as "number of supported database entries" or "security level" could be supported.
然后,该服务可以自由地将它选择的任何一种安全性用于所调用的下游服务。
The service is then free to use whatever security it chooses to use downstream to the services it invokes.
由于不能保证安全性,您无法将服务公开给客户、合作伙伴和供应商。
You cannot open up services to customers, partners, and suppliers due to lack of security.
由于缺乏安全性,他们不能够将服务公开给客户、合作伙伴和供应商。
They cannot open up services to customers, partners, and suppliers due to lack of security.
远程管理中的劣质凭证、协议暴露和实现缺陷都可能会威胁云服务安全性。
Cloud service security can be threatened by poor credentials, protocol exposure, and implementation flaws in remote management.
本系列的“安全性和用户管理”部分将对此服务进行详细介绍。
This service will be explained in detail in the security and user management part of this article series.
或许您需要访问现有的库存控制系统、旧的客户数据库或基于大型机的安全性访问控制服务。
Perhaps you need to access an existing inventory control system, a legacy customer database, or a mainframe-based security access control service.
这些问题导致组织需要定义和采用服务安全性治理流程,如图7所示。
These issues have led to the organization needing to define and adopt service security governance processes, shown in Figure 7.
本系列的“安全性和用户管理”部分将对此服务进行详细介绍。
This service will be explained in more detail in the Security and user management article of this series.
容器使用代理来包装实际的端点,以便提供事务和安全性这样的服务。
The container uses the proxy to wrap the actual endpoint in order to provide services such as transactions and security.
分支esb的基础设施、转换、策略、安全性和服务注册中心项都是集中创建和管理的,很少或根本没有本地自定义。
The branch ESB infrastructure, transformations, policies, security, and service registry entries are all created and managed centrally with little or no local customization.
违反安全性或法规遵循需求的服务可能会引入大量业务风险。
Services that violate security or compliance requirements can introduce significant business risk.
soa安全性帮助限制用户对服务的访问。
分支esb基础设施是集中提供的,集中提供的还有转换、策略、安全性和服务注册中心项。
The branch ESB infrastructure is provided centrally, as are transformations, policies, security, and service registry entries.
ESB主要负责服务的供应和安全性。
The ESB is primarily responsible for service provisioning and security.
接下来,我们需要为Web服务安全性签名和加密创建密钥和证书。
Next we need to create the keys and certificates for the Web services security signatures and encryption.
步骤4:为WS - AT消息交换设置WebSphere安全性、SSL证书和事务服务。
Step 4: Set up WebSphere security, SSL certificates and transaction service for WS-AT message exchange.
任何根据安全性支持对web服务栈的排序都是非常主观的。
Any attempt to rank web services stacks on their security support will necessarily be highly subjective, because each stack has both strengths and weaknesses.
Requiresglobalsecurity:可以选择需要全局安全性,如果服务需要认证的话。
Requires global security: Select Requires global security if the server requires authentication.
第2部分将讨论如何配置Web服务安全性。
用于服务安全性的治理子流程。
服务器端身份验证安全性插件(即服务器身份验证插件)。
Server-side authentication security plug-in (server auth plug-in).
为获得最高安全性,该服务器应该只能放在外部网上。
For maximum security, the server should only be placed on the extranet.
对于家庭用户来说,它有点昂贵,但是对于想运行许多服务,却不想为安全性或者服务之间的其他交互担心的人来说,这是一个极好的特性。
It's a little pricey for home users, but it's an excellent feature for people who want to run a lot of services without worrying about security or other interactions between them.
通过适当的服务水平安全性设计和实现对服务进行标识和遵从性管理。
The services are managed for identity and compliance through proper service-level security design and implementation.
应用推荐