VOSibilities

I am very pleased to be able to post another fascinating talk from our own Kim Pease. This time, Kim makes clear a topic that we have repeatedly heard is on the minds of developers and managers alike: application security in a messaging environment. Kim pays special attention to all the WS-Security options and explains, among other things, why some authentication and encryption options are recommended in the WS-Security standards.

Normal application security is, ’scuse the ugly metaphor, a hairy ball of wax. But when you add in the additional requirements necessary to deal with a messaging-driven, services-based application environment, the complexity can overwhelm you. WS-I…SAML…WS-I…it can all become mush. Or, as least it seems this way until Kim clearly describes each part of the standard and then delivers a demonstration of the most important OASIS specifications in a demo.

Due to the depth of this topic, this podcast episode runs about 18 minutes. There are two versions posted here. The .avi format is encoded at 1024×768 and uses a standard DivX codec. The .m4v is formatted for the iPod at 640×480. The .m4v will play on the blog at half size (320×480), though it plays at full size on iTunes and on the iPod.

Based on the very good response to Kim’s last talk, I expect many of you will find it well worth the bandwidth to download either or both versions for reference at your leisure.

 

 VOSibilities podcast #11: Kim Pease on using WS-Security in services-based applications [19:48m]: Play Now | Play in Popup | Download (735)
 VOSibilities podcast #11: Kim Pease on using WS-Security in services-based applications [19:48m]: Download (109)