Defining Network XML Threat Prevention: Next Generation XML Intrusion Prevention

Track: Large-Scale Architectures, Deploying XML

Audience Level: High Level/Technical view

Time: Thursday, November 17 11:45

Author: Steve Orrin, Sarvega, Inc.

Keywords: XML, Intrusion Prevention, Security, Web Services, XML Web services

Abstract:

Many organizations are discovering that traditional network protection and infrastructure systems lack the functionality, performance, and operational efficiencies to provide a cost effective and scalable XML Threat Prevention solution. This presentation describes the unique security challenges that XML Web Services present to traditional network protection and infrastructure solutions such as Firewalls (FW), Intrusion Detection Systems (IDS), and Intrusion Prevention Systems (IPS). To address these concerns, the presentation establishes a new XML Web Services Network IPS as an important element to address key XML Web Services threat and security requirements. With this next generation IPS, the presentation defines a new approach for XML security and threat prevention with a logical separation between:

XML Web Services Trust Enablement: The ability for Web Service applications to proactively protect data and communication

XML Web Services Threat Prevention: The ability for Web Service network infrastructure to protect against known and unknown XML network threats that could impact the availability and integrity of the Web Services application

The participant will learn more about:

*Concerns with the span of functionality attempted by XML Proxy FW

*Impact of XML Proxy FW on enterprise organizations and operations

*Concerns with specific limitations of XML Proxy FW implementations

*How a next-generation XML NIPS addresses XML Web Services security and threats