<< 1 >>
Rating: 
Summary: Securing .NET example available for download
Review: From one of the authors: we have available some material on how to build secure .NET Web services. Some readers of the book may find this helpful in their efforts to build secure Web services on the .NET platform. (...)
Rating: 
Summary: Very good read for early developers, architects and managers
Review: Having been a software architect with special focus on security and also being involved in developement of various XML related security standards, I believe, this book gives a good insight into many of the fundamental concepts related to Secure Web Services.
It is a very easy read with lots of history behind some of the standards and specifications created. I would have liked a few more references - a section by itself would have been useful in addition to the inlining of references which are very useful too.
I don't think I saw a clear distinction of standards and specifications. To understand this, you may want to read this white paper - http://www.sun.com/software/whitepapers/webservices/securing_webservices.pdf This is also a good book for developers who would want to understand and get started Secure Web Services. I would certainly put this book first before getting your hands into coding.
Rating:
Summary: Nice practical book with good insights
Review: I teach a course on Web Services Security, and was in search of a good book that I could recommend to my class. This book was certainly a good find. It goes beyond the hype and chatter associated with Web Services. This book puts a very objective perspective. What I specifically like about the book, is how it ties past lessons learnt with the current technologies and thus, helps us not repeat the mistakes. Also, throughout the book, the authors explain complex security concepts in a lucid manner and simplify (as much as possible) the intricacies of implementing secure web services. There are numerous practical insights and illustrations through out. I would strongly recommend this book for anyone trying to implement WS-* specification based solution. The only thing I would have liked to see in the book is an example with .NET as well. Nevertheless, the book is fairly platform independent (except for chapter 10) and both Java and .NET developers would benefit equally. This is my personal favorite as of now. I also like Web Services Security by Mark O'Neil - but that book is slightly dated now.
Rating:
Summary: This book sure does demystify Web Services security
Review: Perfect book for the novice as well as the person that thinks they know it all, but just wants to be sure. With the emergence of Web Services and the security concerns surrounding them, its nice to get an strong grasp on the different components that must be considered. This book does a very nice job at outlining the differences and helps anyone understand the critical need for understanding all aspects of securing Web Services. When put in perspective like this, it makes you realize that implementation is not so hard as long as you know what to implement.
Rating:
Summary: This book sure does demystify Web Services security
Review: Perfect book for the novice as well as the person that thinks they know it all, but just wants to be sure. With the emergence of Web Services and the security concerns surrounding them, its nice to get an strong grasp on the different components that must be considered. This book does a very nice job at outlining the differences and helps anyone understand the critical need for understanding all aspects of securing Web Services. When put in perspective like this, it makes you realize that implementation is not so hard as long as you know what to implement.
Rating: 
Summary: No practical stuff....and too much belated content
Review: The book says quite a lot on the front and back cover but inside I found the content is boring me to death. It has no practical stuff or hands-on value except for repeating the same stuff obtained from w3c and oasis specs. The book lacks how to incorporate the title mentioned security standards in J2EE or .NET based web services. The books shows a Weblogic workshop example that works only for weblogic like "hello world" story and there are too many missing gaps unaddressed in a developer view. In an architect or developer standpoint, this book is too much high-level with lot of things unaddressed. And to the worst, the book has belated content and trails behind a lot with current specs.
Rating:
Summary: Excactly what we need given the state of the standards
Review: This book hits the nail on the head. There are a ton of prospective Web Service and security standards floating around. These authors focus on just the ones that matter. XACML, WS-TrustedConversation, etc. etc. may have an impact later on. But today, it is WS-Security, WS-Policy, SAML, XML Signature, and XML Encryption that are the ones that count.
Rating:
Summary: web services security becomes simple and easy
Review: This book makes web service security and ws-security easy to understand. It includes diagrams that makes complicated process easy to understand.
It also includes samples and screen shots on securing web services using WebLogic Workshop. These step by step demo makes ws-security appears so simple.
<< 1 >>
| 
