Application of Web Service Security Architecture in Enterprise Application Integration

摘要

Web Services (WS) provide the potential to achieve the interoperability of distributed electronic commerce (E-commerce) application integration among autonomous organizations, regardless of platforms, operating systems or languages. The most important challenge about the WS based on the applications is to guarantee the security of trading information exchange. After reviewing the paradigm of developing WS security standards and challenges, this paper presents a security model of WS for enterprise. A Service-Oriented Architecture (SOA) based on security enabled Enterprise Service Bus (ESB) is put in practice in a financial business application. The performance of WS-Security mechanisms under alternate security configurations and the best practice in actual development are discussed.