Changes between Version 1 and Version 2 of TI12_Security/Security0612


Ignore:
Timestamp:
12/12/06 12:57:11 (13 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • TI12_Security/Security0612

    v1 v2  
    1 BADC DEWS Security Critical Path (and resource allocation) 
     1= Security Status December 2006 = 
    22 
    3 1.WS-Security WebSphere - Python interface (Done) 
    4 2.Securing Geoserver. While we expect this work to be done at the Met Office (in cooperation with ESSC), we expect to be providing consultancy on the token signature evaluation etc and coordinating the work (2 days effort) 
     3== Highlights == 
     4 * Web service interface working between WebSphere and Python using WS-Security 
     5  * Using digital signature 
     6  * confidentiality using SSL - easier than getting WS-Security encryption working between !WebSphere and python 
     7  * Although the WS-Secuirty standard is established the tooling has not reached full maturity.  With WebSphere, you can do most of what you want but it is a subset of the full standard. 
     8 * Carried out a major update of python  web services from ZSI version 1.6 to 2.0 rc3.  This includes using doc/literal wrapped style WSDL.  Also, now using Twisted resource framework for python web server. 
     9 
     10== DEWS Security Critical Path and resource allocation (applicable to NDG also) == 
     11 
     12 1. WS-Security WebSphere - Python interface (Done) 
     13 1. Securing Geoserver. While we expect this work to be done at the Met Office (in cooperation with ESSC), we expect to be providing consultancy on the token signature evaluation etc and coordinating the work (2 days effort) 
    5143.Update security WS interfaces for Session Manager, Attribute Authority and Simple CA.  NB: Attribute Authority and SimpleCA code is part complete. (10 days effort, 12 total). 
    6151.re-write of rpc encoded WSDLs to wrapped/doc/literal style