developerWorks

AIX and UNIX
Information Mgmt
Lotus
Rational
Tivoli
WebSphere

Architecture
Autonomic computing
Java™ technology
Linux
Multicore acceleration
Open source
SOA and Web services
	New to SOA and Web services
	Downloads & products
	Open source projects
	Standards
	Technical library
	Training
	Forums
	Events
Web development
XML

About dW
Submit content
Feedback

Related links
	ISV resources
	alphaWorks (emerging technologies)
	IBM Academic Initiative
	IBM Redbooks
	IBM Press books
	IBM communities

Local sites
	developerWorks 中国
	developerWorks Japan
	developerWorks 한국
	developerWorks Россия

developerWorks > SOA and Web services | Open source | Grid computing >

Build secure WS-Resources with WSRF::Lite and WS-Security

Level: Intermediate

Mark McKeown (mark.mckeown@manchester.ac.uk), Grid Architect, University of Manchester
Stephan Zasada (stefan@zasada.co.uk), Grid Computing Researcher, University College London

04 Apr 2006


	Register now or sign in using your IBM ID and password.

WSRF::Lite is an implementation of the Web Services Resource Framework (WSRF) in Perl. Learn how to secure Web services and WS-Resources built with WSRF::Lite, using two approaches: Transport Layer Security (TLS) and digitally signing Simple Object Access Protocol (SOAP) messages.

In this tutorial

This tutorial shows Web services and grid developers how to build secure WS-Resources using WSRF::Lite, a Perl implementation of the WSRF. It introduces WS-Security and TLS and discusses the advantages and disadvantages of each. In the tutorial, you'll use both approaches to build secure WSRF::Lite WS-Resources.

In this tutorial, you will learn the options for securing WSRF::Lite WS-Resources using WS-Security and TLS. Explore the types of security threats you face when building Web services and how to counter them using the features of WS-Security and TLS. On completing the tutorial, you'll know how to build a secure WSRF::Lite WS-Resource using digitally signed SOAP messages, TLS, or a combination of the two.

Prerequisites

Basic knowledge of Perl will help you complete the tasks. And you should also have a basic understanding of Web services technology and Public Key Infrastructure (PKI). This tutorial is a follow-up to the IBM developerWorks tutorial "Build WS-Resources with WSRF::Lite." If you aren't familiar with WSRF, WS-Addressing, or WSRF::Lite, you'll find it useful to complete that tutorial first.

System requirements

To run the examples, install the following Perl modules on a Linux® system:

SOAP::Lite version 0.65 or higher
XML::DOM
DateTime
DateTime::Format::Epoch
DateTime::Format::W3CDTF
Crypt::OpenSSL::RSA
MIME::Base64
Digest::SHA1
Crypt::OpenSSL::X509
XML::CanonicalizeXML

You also need an X.509 digital certificate. If you don't have one, create your own using tools such as SimpleCA.

Formats

html, pdf

Share this....

Digg this story

del.icio.us

Slashdot it!

Back to top

Document options

Document options requiring JavaScript are not displayed