Proceedings

Track: Large-Scale Architectures, Government, Metadata and Semantics

Audience Level: High Level/Technical view

Time: Thursday, November 17 14:45

Keywords: WS, WSPolicy, SAML, XACML, Governance, Enforcement

Abstract:

Service Oriented Architectures (SOA) and specifically Web Services have been the focus of an intensive standardization effort for the past few years. Many of these standards use the term "policy" to define the requirements they express. A closer look at the policy landscape reveals an emerging taxonomy of policies within the SOA. Policies typically relate to business level requirements, service implementation requirements or production enforcement requirements. This taxonomy reveals gaps in the effort to define dynamic governance policies allowing real time policy enforcement. In addition, common denominators have been identified between policies that may be leveraged to improve policy uniformity and streamline enterprise wide policy implementation. In particular, a set of new enforcement policies is proposed using novel policy concepts together with building blocks from XACML, WS-Policy and SAML.