Loggen Sie sich ein, um 1-Click® einzuschalten.
Mit kostenloser Probeteilnahme bei Amazon Prime. Melden Sie sich während des Bestellvorgangs an.
Jetzt eintauschen
und EUR 3,05 Gutschein erhalten
Alle Angebote
Möchten Sie verkaufen? Hier verkaufen
Der Artikel ist in folgender Variante leider nicht verfügbar
Keine Abbildung vorhanden für
Keine Abbildung vorhanden

Den Verlag informieren!
Ich möchte dieses Buch auf dem Kindle lesen.

Sie haben keinen Kindle? Hier kaufen oder eine gratis Kindle Lese-App herunterladen.

SOA Security [Englisch] [Taschenbuch]

Ramarao Kanneganti , Prasad Chodavarapu
5.0 von 5 Sternen  Alle Rezensionen anzeigen (1 Kundenrezension)
Preis: EUR 42,76 kostenlose Lieferung Siehe Details.
  Alle Preisangaben inkl. MwSt.
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
Nur noch 1 auf Lager (mehr ist unterwegs).
Verkauf und Versand durch Amazon. Geschenkverpackung verfügbar.
Lieferung bis Freitag, 24. Oktober: Wählen Sie an der Kasse Morning-Express. Siehe Details.


31. Mai 2007
HIGHLIGHT A practitioner's guide to implementing and architecting security in enterprises that use SOA. Covers WS-Security, XML Encryption, XML Signatures, and SAML. It is the only book in the market that is hands-on, at the code level. DESCRIPTION Anyone seeking to implement SOA Security is forced to dig through a maze of inter-dependent specifications and API docs that assume a lot of prior security knowledge on the part of readers. Getting started on a project is proving to be a huge challenge to practitioners. This book seeks to change that. It provides a bottom-up understanding of security techniques appropriate for use in SOA without assuming any prior familiarity with security topics. Unlike most other books about SOA that merely describe the standards, this book helps readers learn through action, by walking them through sample code that illustrates how real life problems can be solved using the techniques and best practices described in the standards. It simplifies things: where standards usually discuss many possible variations of each security technique, this book focuses on the 20% of variations that are used 80% of the time. This keeps the material covered useful for all readers except the most advanced. KEY POINTS * Why SOA Security is different from ordinary computer security, with real life examples from popular domains such as finance, logistics, and government * Uses open source tools and code examples to show how things work. This knowledge is then useful for work with proprietary tools. * Assumes no prior security knowledge MARKET INFORMATION One of the major obstacles to implementing SOA in enterprises is the difficulty in grasping what is different about security in SOA. There is a lot of published material out there about SOA security--but it does not provide the specifics on how to plan, design, and implement enterprise-class SOA security architecture. This book addresses that challenge in a hands-on way.

Hinweise und Aktionen

  • Studienbücher: Ob neu oder gebraucht, alle wichtigen Bücher für Ihr Studium finden Sie im großen Studium Special. Natürlich portofrei.

Kunden, die diesen Artikel gekauft haben, kauften auch


  • Taschenbuch: 483 Seiten
  • Verlag: Manning Pubn (31. Mai 2007)
  • Sprache: Englisch
  • ISBN-10: 1932394680
  • ISBN-13: 978-1932394689
  • Größe und/oder Gewicht: 2,8 x 18,5 x 23 cm
  • Durchschnittliche Kundenbewertung: 5.0 von 5 Sternen  Alle Rezensionen anzeigen (1 Kundenrezension)
  • Amazon Bestseller-Rang: Nr. 306.281 in Fremdsprachige Bücher (Siehe Top 100 in Fremdsprachige Bücher)

Mehr über die Autoren

Entdecken Sie Bücher, lesen Sie über Autoren und mehr


Über den Autor und weitere Mitwirkende

Dr. Ramarao (Rama) Kanneganti

is Chief Technology Officer (CTO) at HCL

EAI Services. Rama has a Ph.D. in programming languages from Rice University

and has worked at Bell Labs in databases and large programming systems.

Currently, he advises enterprise clients in formulating and evlauating SOA strategies.

Rama works out of Grosse Pointe Woods (near Detroit), Michigan, USA.

Prasad A. Chodavarapu is General Manager (Technology) at HCL EAI Services,

Bangalore, India. Prasad leads service teams designing and deploying integration

solutions at enterprises world-wide. Prasad’s current focus is on the use of application-

oriented networking technologies to implement and secure SOA.

Eine digitale Version dieses Buchs im Kindle-Shop verkaufen

Wenn Sie ein Verleger oder Autor sind und die digitalen Rechte an einem Buch haben, können Sie die digitale Version des Buchs in unserem Kindle-Shop verkaufen. Weitere Informationen


4 Sterne
3 Sterne
2 Sterne
1 Sterne
5.0 von 5 Sternen
5.0 von 5 Sternen
Die hilfreichsten Kundenrezensionen
1 von 3 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen Complete and good 11. Februar 2008
The book provides a thorough and in deep introduction to major security standards that are relevant for SOA and web services. It provides hands on examples and source code and xml snippets to illustrate how everything works and fits together.
It’s great in providing both, theory and practical examples.
It follows a step by step approach introducing one concept/standard after (and building on) the other.
There is one thing that might stop you from buying it: It is an advanced level book that expects the reader to have some basic security knowledge.
War diese Rezension für Sie hilfreich?
Die hilfreichsten Kundenrezensionen auf Amazon.com (beta)
Amazon.com: 3.8 von 5 Sternen  13 Rezensionen
8 von 9 Kunden fanden die folgende Rezension hilfreich
1.0 von 5 Sternen This book is named incorrectly. 4. Dezember 2008
Von Manas - Veröffentlicht auf Amazon.com
Great book for starters.

However it misses the latest Standards in Security such as PKI, SAML, XACML, WS-Federation, WS-Trust and how it pertains to SOA based solution architecture. So much for a book titled "SOA Security". Also it totally ignores to explain how to ensure security at all integration tiers.

Not for security experts, more for people who are starters and do not have time to "Google" either.

Does not do detailed coverage only basic topics related to Web services security around SOAP and WSDL standards with Apache Axis sample APIs (which are out of box and can be googled easily) are discussed. It is a bit difficult to relate the examples to the meat on the book.

Also missing is the information on how to use the abused Apache API examples to compose/build a Secure SOA service base architecture or how to secure BPM workflows, SOA governance, Identity management using federation, entitlement issues with BPM portals,... the list goes on.

This book contains very repetitive content. The only good portion I found was the chapter on XML Web services. The authors should refer Information Security Management Handbook, Sixth Edition (Isc2 Press) and Core Security Patterns: Best Practices and Strategies for J2EE(TM), Web Services, and Identity Management (Sun Core Series) before the next version comes out.
10 von 12 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen A practioners perspective but also useful to policy and decision makers 25. Januar 2008
Von Prime Member - Veröffentlicht auf Amazon.com
One of the detailed expositions on this subject that I have seen. While it is written to help the architects, designers and developers of services to plan and implement better security, it also gives an excellent overview of the key concepts and challenges.

The book tries to address two key audience groups. One segment is the one with an interest in the broad policy and governance issues related to Security as applied to SOA and service. The other audience segment is from the IT architecture and implementation teams that want to see examples of security as applied to services in the new SOA world. Application and process security issues are explained and illustrated with extensive code samples with detailed walk-throughs of several scenarios.

It is NOT a generic textbook on basics of security or SOA or BPM but is focused on practical issues in architecting and implementing security within SOA and BPM solutions.

There are specific examples of various security models and implementations, including appropriate use of PKI in messages and services, SAML, etc. The authors have provided extensive examples at the publishers website and one of the co-authors has posted some useful links to external reviews and interviews. This was one of the few published books that I have seen discuss Cisco's AON solution.

If you are looking for broader security issues such as intrusion detection, network security, etc. then this is the wrong book. The focus is on Security when implementing a Service Oriented Architecture in an enterprise environment.

The book is physically HEAVY and a very detailed but easy read. I do not recommend reading all the chapters and even the authors seem to agree. It is best to read the initial chapters to cover the concepts and then dive into specific chapters of interest.
11 von 14 Kunden fanden die folgende Rezension hilfreich
2.0 von 5 Sternen Disappointing title. 17. Februar 2008
Von Craig Anderson - Veröffentlicht auf Amazon.com
If you are really serious about building security to your SOA stack of applications, then this book would offer only a hello world to security. All you find is a full-blownup security chapter for XML Web services beyond that nothing more. More importantly this book is completely disorganized...all I saw is the basic XML Web services security using out-of-box Axis examples. To the most disappointment, there is no chapter to show how to put-to-gether all these APIs in a real world SOA (as they claim in the title). Why should I read the book if it is repeating the API examples from Axis. This book is nothing but a theoretical junk with no proof. After browsing all the pages, I don't find anything which show how to build a SOA security architecture. The word security is abused and does'nt make sense for this title.
5 von 6 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen good book 2. Mai 2008
Von Haruo Horii - Veröffentlicht auf Amazon.com
Security is indespensable for web services, but difficult to understand and use. There are too many standatds relevant to security, W3C standards and OASIS. I think to understand whole structure need much time. It seems architecture or principle is required to consistent understanding. This book is good to grasp security standard structure. It is regrettable that this book seems written before 2007, the rush of new standards. I hope this book is maintained to the latest standards. Nonetheless it is good for readers to understand security standards structure.
18 von 25 Kunden fanden die folgende Rezension hilfreich
3.0 von 5 Sternen Good introduction - Lacks details and practical guidance 22. Januar 2008
Von Prasad Reddy - Veröffentlicht auf Amazon.com
I bought this book with lot of expectations but this book FALLS SHORT on providing design and implementation guidance. I likes the introductory coverages and to me it is more like reading Web services security around SOAP and WSDL standards. All I found is about using few Apache Axis samples. It is disappointing to note that this book fully ignored to use standards and technologies such as PKI, SAML and XACML (and its interoperability Profiles), WS-Federation, WS-Trust and related WS-* standards and it's role in SOA based solution archiecture. The authors completely forgot to discuss the core SOA security complexities involved with composing Secure SOA services, securing BPM Workflows, Web services based collaborations, single sign-on and entitlement issues with BPM portals and federated services.

I do agree the introductory part of the book (Chapter 1-2) is a good read beyond that I noticed the book suffers with poorly edited content and it contains highly repetitive content.
Waren diese Rezensionen hilfreich?   Wir wollen von Ihnen hören.
Kundenrezensionen suchen
Nur in den Rezensionen zu diesem Produkt suchen

Kunden diskutieren

Das Forum zu diesem Produkt
Diskussion Antworten Jüngster Beitrag
Noch keine Diskussionen

Fragen stellen, Meinungen austauschen, Einblicke gewinnen
Neue Diskussion starten
Erster Beitrag:
Eingabe des Log-ins

Kundendiskussionen durchsuchen
Alle Amazon-Diskussionen durchsuchen

Ähnliche Artikel finden

Ihr Kommentar