Companies continue their exponential deployment of XML and Web Services applications to facilitate the interconnection of applications and automate their exchanges with subsidiaries, partners and suppliers.
The problem is that the rapid adoption of Web Services technologies exposes company applications and databases to new attack scenarios that raise the following questions:
• How to prevent exposing the various web services available?
• How to keep the structure of the web service confidential?
• How to counter brute force attacks on the web service?
• How to protect against the alteration of application messages?
• How to protect against XML viruses?
• How to ensure the integrity of the data exchanged?
• How to protect against the different protocol and application vulnerabilities despite the possibilities of concealment and evasion?
Deny All provides a unified solution to protect XML and Web Services applications. The rWeb XML Edition system integrates a suite of powerful functions that cover the entire functional scope required to secure a web service:
• Parameter setting with granular access to the available applications
• Verification of the harmlessness of input and output parameters and their confidentiality
• Validation of SOAP protocol attachments
• Complete access control management and security
• Signature base regularly updated
• Sensitive data substitution and transformation mechanism
The benefits are:
A unified security platform for http, XML and Web Service applications
Clear separation between the application environment and the security environment
A security service independent of and transparent to the application
Guaranteed confidentiality of sensitive data
Management simplified by concentration of the different policies at a single point
The product concerned :
rWeb XML Edition, the solution for protecting XML applications and Service-Oriented Architectures
