REST Security at JavaOne | JAVA Developer's Journal

Search

Java Authors: Pat Romanski, Hovhannes Avoyan, Bob Gourley, Andreas Grabner, Vivek Arora

Related Topics: Java, Oracle

Java: Blog Feed Post

REST Security at JavaOne

We'll be talking about threats and countermeasures for REST Web Services

By Mark O'Neill	Article Rating:
August 21, 2010 06:00 AM EDT	Reads:	3,614

Related
Print
Email
Feedback
Add This
Blog This

I'm speaking with Vikas Jain from Oracle at JavaOne (co-located with Oracle Open World this year) on the topic of REST Security.

The session link is below:
http://www.eventreg.com/cc250/sessionDetail.jsp?SID=314100

CIO, CTO & Developer Resources

(or go to the main catalog page and paste the Session ID 314100 into the search form).

We'll be talking about threats and countermeasures for REST Web Services. We will also discuss the various REST authentication schemes being used by Cloud service providers today. Some of these authentication schemes (in particular that used by Amazon Web Services) is as close to an "industry standard" for REST authentication as we have now. Saw what you like about the WS-Security bloat, but at least it is an open standard, whereas for REST authentication there isn't one yet (unless you count HTTP Auth).

But organizations realize that they can gain an advantage by providing a REST API and opening it up to the largest amount of (authenticated) users. So here at Vordel we have customers using our Gateway for REST authentication today, so that they can provide REST authentication and navigate the current world of REST security.

Read the original blog entry...

Published August 21, 2010 – Reads 3,614
Copyright © 2010 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

Related
Print
Email
Feedback
Add This
Blog This

More Stories By Mark O'Neill

Mark O'Neill is Chief Technology Office of Vordel. Vordel connects applications to applications, businesses to other businesses, and SOA to Cloud Computing. A regular speaker at industry conferences and a contributor to SOA World Magazine and Cloud Computing Journal, Mark holds a degree in mathematics and psychology from Trinity College Dublin and graduate qualifications in neural network programming from Oxford University.

Related Stories

Comments

Drool, Britannia? Is the UK Failing the Cloud?

By Roger Strukhoff

Richard Davies wrote: The UK has a good crop of technology pioneers in cloud computing - for example ElasticHosts, FlexiScale, Flexiant, OnApp - and also some strong government initiatives such as G-Cloud. We will have to see whether this kind of technical leadership converts into swift mass-market adoption or not.

Jan. 8, 2012 11:38 AM EST

read more & respond »

Latest Java News

10th Cloud Expo: Java EE 7 in the Cloud

By Pat Romanski

The focus of Java EE 7 is on the cloud, and s...

Feb. 13, 2012

Cloud Expo & Virtualization 2011 West

Keynotes

Opening Keynote | An Enterprise Cloud for Business-Critical Applications

Day 2 Keynote | The Enterprise Cloud Tightrope - Balancing for Success

Day 3 Keynote | The DNA of an Enterprise Cloud

DIAMOND SPONSOR:

Many Clouds, Many Choices'Cloud

PLATINUM PLUS SPONSORS:

Enterprise Cloud Best Practices - Town Hall - Join the discussion…

PLATINUM SPONSORS:

Progressing Toward the Federated, Automated and Client-Aware Cloud

How to build an app with Twitter-like throughput

Computing in the Cloud Era

GOLD SPONSORS:

Gale Technologies

Practical Cloud Migration

Re-think IT. Re-inventing Business.

Identity Driven Security in the Cloud

Hackers Hackers Everywhere, Is My Public Cloud That Safe?

Unlock the Value of the Cloud

Mission Critical Applications and the Cloud - Myth or Reality?

Not Your Grandpa's Cloud

Integrating Enterprise Clouds

Upgrade to a vCloud

POWER PANELS:

Cloud Expo Silicon Valley: CTO Power Panel

Cloud Expo Silicon Valley: CEO Power Panel

Cloud Expo Silicon Valley: Cloud SuperStars Panel

Cloud Expo Silicon Valley: CloudNOW Panel

Click For 2010 West
Event Webcasts

Cloud Expo & Virtualization 2011 East

DIAMOND SPONSOR:

Dell & VMware Deliver the Enterprise Hybrid Cloud

PLATINUM PLUS SPONSORS:

Are Financial Services Organizations Risking Security by Avoiding Cloud Computing?

From Consolidation to Enterprise Private PaaS

PLATINUM SPONSORS:

Driving the Transformation to Next Generation Cloud Data Centers

The Inevitability of an Open Cloud

GOLD SPONSORS:

CA Technologies

Follow YOUR path to Cloud Computing

Who Keeps the Cloud in the Air?

Patterns for Cloud Computing

War in the Clouds: Are you ready?

The Big Win: Stop Playing Small-Ball with Your Cloud Strategy

Evaluating Enterprise Clouds

Cloud Storage: Myths and Realities

POWER PANELS:

Cloud Expo New York: CTO Power Panel

Cloud Expo New York: CEO Power Panel

Cloud Expo New York: CMO Power Panel

Cloud Expo New York: Wrap-Up Power Panel

Click For 2010 West
Event Webcasts

Topics

From the Blogosphere

From the Editor

Hibernate | JSF | Spring

Java Industry News

Product Reviews

Yakov's Gas Station

Is Your Business 100% Ready for the New Era of Cloud Computing and Big Data?
The Only Enterprise IT Event in 2012 Covering the Entire Scope of both Cloud & Big Data

Come to New York and get yourself up to date with the Big Data revolution! As advanced data storage, access and analytics technologies aimed at handling high-volume and/or fast moving data all move center stage, aided by the Cloud Computing boom, Cloud Expo is the single most effective event for you to learn how to use you own enterprise data – processed in the Cloud – most effectively to drive value for your business.

There is little doubt that Big Data solutions will have an increasing role in the Enterprise IT mainstream over time. Get a jump on that rapidly evolving trend at Big Data Expo, which we are introducing in June at Cloud Expo New York.

Cloud Expo was announced on February 24, 2007, the day the term "cloud computing" was coined. That same year, the first Cloud Expo took place in New York City with 450 delegates. Next June, Cloud Expo is returning to New York with more than 10,000 delegates and over 600 sponsors and exhibitors.

"Cloud" has become synonymous with "computing" and "software" in two short years. Cloud Expo is the new PC Expo, Comdex, and InternetWorld of our decade. By 2012, more than 50,000 delegates per year will participate in Cloud Expo worldwide.

The cloud is certainly a compelling alternative to running all applications within a traditional corporate data center. But moving from theory into practice is where things get complicated, and this is where attending a top industry event like Cloud Expo comes in.

No one can take full advantage of cloud computing without first becoming familiar with the latest issues and trends, which is why the organizing principle of the 10th International Cloud Conference & Expo on June 11-14, 2012 - is to ensure - through an intensive four-day schedule of keynotes, general and breakout sessions, and our bustling Expo Floor - that attending delegates leave the Javits Center with abundant resources, ideas and examples they can apply immediately to leveraging the Cloud, helping them to maximize performance, minimize cost and improve the scalability of their Enterprise IT endeavors.

Delegates will leave Cloud Expo with dramatically increased understanding the entire scope of the entire cloud computing spectrum from storage to security.

Whether you're an enterprise or small to medium business, you'll soon be benefiting from the Cloud. Join your peers in New York City June 11-14, and maximize those benefits already in 2012. See you in New York City!

Register Now!
Save $500 on your “Golden Pass”! Call 201.802.3020
or click here to Register
Early Bird Expires Friday.

Speaker Opportunities
Submit your speaking proposal for the upcoming Cloud Expo in New York City
[June 11-14, 2012]

Exhibitor Info
Please Call 201.802.3021
events (at) sys-con.com.
Carmen Gonzalez,
carmen (at) sys-con.com.

Produced and presented by Cloud Expo, Inc.

close this window