march 12, 2003 company confidential silicon valley web guild the challenges and future of web...
Post on 19-Dec-2015
214 views
TRANSCRIPT
![Page 1: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/1.jpg)
Silicon Valley Web Guild
The Challenges and Future of Web ServicesMarch 12, 2003
![Page 2: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/2.jpg)
What Are Web Services?
• Technical Definition: XML/SOAP Over HTTP for Application to Application Communication.
• Very Few People Work off the Technical Definition.
• Reality: Web Services Are Anything Over HTTP(s) E.G. ERP With a Web Interface Can Equal Web Service
Result:Web Services Give Us A World Without Boundaries.
![Page 3: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/3.jpg)
Who Are the Players?
IDC Predicts Market Will Grow From $1.6 B in 2004 to $34 B by 2007.
SunONE / IPlanet
BEA Weblogic
Oracle 9iApplication
Server
Java 2Platform
EnterpriseEdition(J2EE)
IBMWebsphere
Microsoft.Net
22%
33%28%
7%6%
4%
![Page 4: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/4.jpg)
Access to Information and Services by User ID … Not IP/URL Address.
Current Remote Access Technologies (VPN) Are Inadequate
Requires Full Proxy To Intercept All Requests and Analysis All Responses
Requires Comprehensive HTTP, HTML & XML Content Analysis
Requires Fully Integrated Content Networking
Requires Very High SSL Acceleration Performance
The Emerging Enterprise
![Page 5: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/5.jpg)
Benefits of Web Services
• Location Is No Longer an Issue: Anywhere/Anytime Access.
• All Transactions Are Authenticated/Authorized.
• User of a Browser Instead of a Heavy-Weight Application on the Desktop.
Browser Based Applications Are No Longer the Domain of .Com “Toys”
![Page 6: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/6.jpg)
The Challenges of Web Services
• Security and Performance
• Every Transaction Must Be Authenticated and Authorized.
• Every Transaction Must Be SSL Encrypted.
• Every Transaction Must Be Fast Enough for Interactive Use.
• Every Transaction Must Be “NATTED”.
What Then Is The Role Of The Firewall?
![Page 7: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/7.jpg)
Firewalls Aren’t Going To Cut It
• Firewalls Are Primarily Network Level Only.
• Firewalls Do Not Provide Application Networking Security.
• Firewalls Cannot “NAT” Application Content.
• Application Content Can Allow Others To Map Your Network.
Firewalls Are No Longer Enough.
![Page 8: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/8.jpg)
Where Are The Bad Guys?
![Page 9: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/9.jpg)
A New Paradigm
• Proxies Will Be Crucial
• Proxies Must Be Well Positioned So All Application Access Can Be
Centrally Authenticated and Authorized.
• Proxies Must Handle SSL Traffic on Behalf of the Server.
• Proxies Must Provide Some Kind of HTTP Level NAT for Both HTML and Javascript.
![Page 10: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/10.jpg)
Centralized AAA
![Page 11: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/11.jpg)
ExtranetExtranet
![Page 12: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/12.jpg)
Internet
![Page 13: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/13.jpg)
Intranet
![Page 14: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/14.jpg)
Handling SSL For The Server
Cipher TextTo TheClient
Clear TextTo TheServer
• The Server Is Your Revenue.
• SSL Is A Requirement To Do Business, But Not A Strategic Advantage.
• Proxies That Handle SSL On Your Server’s Behalf Keep The The Servers Focused On Making Money.
![Page 15: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/15.jpg)
HTTP Level NAT
Application Data From Server Can Reveal Private Information
e.g. http://server.company.com/application/erp.asp?login=cxo&acct=12345&value=important
Proxies Should Protect The Server From Revealing Private Data
e.g. http://proxy.company.com/708790f9d1c84a1d2640e5af2515a699
![Page 16: March 12, 2003 Company Confidential Silicon Valley Web Guild The Challenges and Future of Web Services March 12, 2003](https://reader030.vdocument.in/reader030/viewer/2022032703/56649d2a5503460f949fe4a2/html5/thumbnails/16.jpg)
The Future of Web Services
• SOAP/XML Will Be the Enabling Technology to Let Us “Webify” Applications.
• Web Browsers Will Become the De-facto Platform for Enterprise Applications.
• Homogeneous Application Networking Can Be Accomplished.
Web Services Will Succeed Not Because It Is “Cool”, But Because It Saves Money.