Professional Documents
Culture Documents
and Firewalls
Matthew J. Dovey
Technical Manager
Oxford e-Science Centre
http://e-science.ox.ac.uk
(matthew.dovey@oucs.ox.ac.uk)
WebServices
Method of inter-computer communication
WebServices
Service defined by endpoint
Securing WebServices
Publishing model
But
Securing WebServices
Application Level Firewalls
Securing WebServices
Private Networks via SSL
GridServices
An application framework built on
WebServices
Differences from traditional WebServices
State handling
NotificationSource and NotificationSink
Notification Events
Under OGSA Notification model both
source and recipient of a notification must
implement a GRID Service interface
i.e. GRID clients (typically desktops) must
behave as a GRID Service (WebService)
server
Security of desktop as crucial as security
of server
Issues with VPNs
State handling
WebServices handle state via
Summary
WebServices originally bypassed firewalls
WebServices require sophisticated
application-aware protection
WebServices/GRIDServices potential offer
mechanisms for enforcing security (e.g.
certificate authentication)
Slide number 14