ACORD Web Services Profile: 2.0 vs. 1.0

Similar documents
SOAP 1.2, MTOM and their applications

Lesson 13 Securing Web Services (WS-Security, SAML)

Enterprise SOA Experience Workshop. Module 8: Operating an enterprise SOA Landscape

1Z Java EE 6 Web Services Developer Certified Expert Exam Summary Syllabus Questions

C exam. IBM C IBM WebSphere Application Server Developer Tools V8.5 with Liberty Profile. Version: 1.

Basic Profile 1.0. Promoting Web Services Interoperability Across Platforms, Applications and Programming Languages

Proof of concept AS4. Version 1 Revision ITC-KG AS4 Proof of Concept 16 January 2014 Draft INT

Service Interface Design RSVZ / INASTI 12 July 2006

WS-*/REST Web Services with WSO2 WSF/PHP. Samisa Abeysinghe Nandika Jayawardana

Lesson 3 SOAP message structure

U.S. E-Authentication Interoperability Lab Engineer

Implementing a Ground Service- Oriented Architecture (SOA) March 28, 2006

Oracle Developer Day

WEB-202: Building End-to-end Security for XML Web Services Applied Techniques, Patterns and Best Practices

National Identity Exchange Federation. Web Services System- to- System Profile. Version 1.1

Chapter 17 Web Services Additional Topics

We are ready to serve Latest Testing Trends, Are you ready to learn? New Batch Details

MSc. Software Engineering. Examinations for / Semester 1

Oracle Fusion Middleware

Inforce Transactions TECHNICAL REFERENCE. DTCCSOLUTIONS September Copyright 2011 Depository Trust Clearing Corporation. All Rights Reserved.

WS-* Standards. Szolgáltatásorientált rendszerintegráció Service-Oriented System Integration. Dr. Balázs Simon BME, IIT

Oracle Fusion Middleware

Distributed Systems. Web Services (WS) and Service Oriented Architectures (SOA) László Böszörményi Distributed Systems Web Services - 1

DEVELOPER GUIDE PART B CONNECTOR REQUIREMENTS

Programming Web Services in Java

Lesson 15 SOA with REST (Part II)

RealMe. SAML v2.0 Messaging Introduction. Richard Bergquist Datacom Systems (Wellington) Ltd. Date: 15 November 2012

Goal: Offer practical information to help the architecture evaluation of an SOA system. Evaluating a Service-Oriented Architecture

Web Services Security. Dr. Ingo Melzer, Prof. Mario Jeckle

ehealthbox v.2 Consultation Web Service Cookbook Version 2.4

COP 4814 Florida International University Kip Irvine. Inside WCF. Updated: 11/21/2013

A Signing Proxy for Web Services Security

IEC : Implementation Profile

Web Services in Cincom VisualWorks. WHITE PAPER Cincom In-depth Analysis and Review

Forum XWall and Oracle Application Server 10g

Datapower is both a security appliance & can provide a firewall mechanism to get into Systems of Record

zentrale Sicherheitsplattform für WS Web Services Manager in Action: Leitender Systemberater Kersten Mebus

Security Assertions Markup Language (SAML)

Technologies for Securing the Networked Supply Chain. Alex Deacon Advanced Products and Research Group VeriSign, Inc.

ArcGIS Server and Portal for ArcGIS An Introduction to Security

XML Web Service? A programmable component Provides a particular function for an application Can be published, located, and invoked across the Web

Web Services Security SOAP Messages with Attachments (SwA) Profile 1.0 Interop 1 Scenarios

Interoperability Solutions Guide for Oracle Web Services Manager 12c (12.2.1)

AIM Enterprise Platform Software IBM z/transaction Processing Facility Enterprise Edition 1.1.0

DTCC Web Services Implementation

International Journal of Computer Science Trends and Technology (IJCST) Volume 3 Issue 6, Nov-Dec 2015

J2EE APIs and Emerging Web Services Standards

Next-Generation SOA Infrastructure. An Oracle White Paper May 2007

Oracle Fusion Middleware

REST/SOAP Harmonization proposal for Identity-based Web-Services

High Volume Transaction Processing in Enterprise Applications

Working Group Charter: Basic Profile 1.2 and 2.0

WCF-Service-Endpoint. WCF Endpoint Components

Web Services, ebxml and XML Security

Network Security Essentials

Projects. How much new information can fit in your brain? Corporate Trainer s Profile TECHNOLOGIES

Enterprise Integration Using IEC

MOC 6461A C#: Visual Studio 2008: Windows Communication Foundation

Integration Documentation. Automated User Provisioning Common Logon, Single Sign On or Federated Identity Local File Repository Space Pinger

ArcGIS Enterprise Security: An Introduction. Gregory Ponto & Jeff Smith

Working Group Charter: Web Services Basic Profile

TIBCO BusinessConnect SOAP Protocol Release Notes

Concepts of Web Services Security

Sentinet for BizTalk Server SENTINET

Web Services Development for IBM WebSphere Application Server V7.0

SUN. Java Platform Enterprise Edition 6 Web Services Developer Certified Professional

National Identity Exchange Federation. Terminology Reference. Version 1.0

ActiveVOS Technologies

Chapter 6: Simple Object Access Protocol (SOAP)

Ramnish Singh IT Advisor Microsoft Corporation Session Code:

CA SiteMinder Web Services Security

SOA-Tag Koblenz 28. September Dr.-Ing. Christian Geuer-Pollmann European Microsoft Innovation Center Aachen, Germany

Prescription Monitoring Program Information Exchange (PMIX) Architecture. Version 1.0. April 2012

AIM Enterprise Platform Software IBM z/transaction Processing Facility Enterprise Edition 1.1.0

IEC Overview CIM University UCAIug Summit Austin, TX. 18 November 2011

Test Plan for Liberty Alliance SAML Test Event Test Criteria SAML 2.0

Open XML Gateway User Guide. CORISECIO GmbH - Uhlandstr Darmstadt - Germany -

IMS General Web Services Attachments Profile

IEC Implementation Profiles for IEC 61968

Operating Systems. 16. Networking. Paul Krzyzanowski. Rutgers University. Spring /6/ Paul Krzyzanowski

API Security Management with Sentinet SENTINET

API Security Management SENTINET

Oracle Fusion Middleware

Overview SENTINET 3.1

Federated Identity Manager Business Gateway Version Configuration Guide GC

CREATION AND CONFIGURATION OF WEB SERVICE FROM RFC AND DEPLOYMENT IN ANOTHER SYSTEM

ActiveVOS JMS Transport options Technical Note

DEVELOPER GUIDE PART C DEVELOPMENT STEPS

BEAAquaLogic. Service Bus. MQ Transport User Guide

1Z Oracle. Java Platform Enterprise Edition 6 Web Services Developer Certified Expert

SPDY - A Web Protocol. Mike Belshe Velocity, Dec 2009

INTERNET & WORLD WIDE WEB (UNIT-1) MECHANISM OF INTERNET

How to Overcome Web Services Security Obstacles

Artix Building Service Oriented Architectures Using Artix


Job Messaging Format (JMF) Tutorial

Applying Microservices in Webservices, with An Implementation Idea

Web services (GSE NL)

Industry Training Register. Guide to integration for ITOs

Naming & Design Requirements (NDR)

Transcription:

ACORD Web Services Profile: 2.0 vs. 1.0 Kevin Schipani, Serge Cayron ACORD ACORD 2009

Agenda Introduction ti to AWSP 2.0 Members views - Requirements and Use Cases Conclusion

Background AWSP 1 for initial deployment (SOAP 1.1 generation) AWSP 1.0 standard release : January 2008 AWSP 1.1 standard release : May 2008 AWSP 2 - for deployment with target t WS standard versions (SOAP 1.2 generation) Working Group restarted in July 2009

AWSP goals To provide guidance for Service Oriented implementation of ACORD standards Developing a Profile for usage of Web Services Standards d will help ACORD members by lowering the number of unique party-to-party solutions. by providing interoperability rules and reduction of number of options for compatibility and cheaper implementation. by building a roadmap for incremental adoption of Web Services Standards

AWSP key topics How do I define Web Service interfaces for ACORD Standards? Basic SOAP and WSDL Profile Business Message Exchange Patterns and their WS implementation Basic transmission reliability Guidance on WSDL interface design How do I solve end-to-end addressing problems? Addressing Profile Go through messaging intermediaries Enable asynchronous responses Route to fine grain services.

AWSP key topics How do I secure message flows and service access? Security Profile Signature and encryption Identity communication How do I establish advanced Reliable and Secure sessions? Reliable Secure Profile (for future versions)

AWSP key topics How do I report errors at service infrastructure t level? l? SOAP Fault Profile How do I deal with attachments? t Attachment Handling Profile In-band communication Out-of-band communication How do I deal with batches? Message Groups and Batches Profile

What s new in AWSP 2 Seamless transport and security protection of in-band binary attachments Attachments are included as base64 encoded elements and automatically transformed into MIME parts for transport (MTOM standard). More flexibly specify service operations. Service operations can be defined for specific transactions, using WS-Addressing, and response endpoints can be controlled.

Policy Placement: Quotation

Service Granularity options for AML Fine Grain (with WS-Addressing) The ports and operations combine transaction types and line of business types e.g. ProfessionalIndemnityPolicyNewBusiness Coarse Grain (without WS-Addressing) The ports and operations map to transaction types e.g. PolicyNewBusiness

Policy New Business New Business Process Result Service Quotation client Order client PolicyNewBusinessQuotationProcess Acknowledgement PolicyNewBusinessOrderProcess Acknowledgement New Business Process Service Quotation Service Order Service Quotation Result Service Order Result Service PolicyNewBusinessQuotationProcessResult Acknowledgement PolicyNewBusinessQuotationProcessResult Acknowledgement Quotation Result client Order Result client

What s new in AWSP 2 Stronger standardization of WSDL interfaces for off-the-shelf h interoperability Messages (ACORD) Import Port Types (ACORD) Import Ports and Services (Company)

What s new in AWSP 2 Robust support of Messaging Intermediaries SOAP 1.2 header discriminates control information intended for intermediaries or endpoints. WS-Addressing conveys endpoint addresses through all nodes in the end to end flow. WS-Security protects information intended to endpoints or intermediaries. Security Profile enhancements Security Profile integrated Security features driven by use cases Added support for SAML - Identity assertion in support of fine grained Access Control rules.

Requirements met by AWSP 2 Jim Brain - Aegon

Attachment Processing Insurance business processes commonly require image or related data in addition to XML business data Real time processing demands in-band attachment handling Data is commonly binary format. File can be non trivial in size

AWSP 1.X Attachment Handling SOAP 1.1 uses Base64Binary inline attachments The data is contained in the SOAP Information Set (InfoSet), but Utilizes only 64 ASCII characters to represent binary data each h3b bytes of fdata become 4 characters Therefore, by definition, each file is increased by 33%. Thus, a 3MB image becomes 4MB under SOAP 1.1.

SOAP with Attachments SOAP with Attachments (SwA) attempted to overcome the 33% concern: Binary data could be sent as MIME attachment Reference to MIME attachment was stored in XML InfoSet But, the data was no longer part of the XML message, it was outside the message

AWSP 1.X message

AWSP 2.0 MTOM Attachments Message Transmission Optimization Mechanism MTOM provides best of both worlds: Attachments are sent as binary data, just like in SwA (In fact, MTOM messages are backwards compatible) XML InfoSet includes binary data. Thus, MTOM allows the XML and binary data to be treated as one unit, even though it is sent separately over the network.

MTOM Example <?xml version='1.0' encoding='utf-8'?> <soapenv:envelope xmlns:soapenv="..."...> "... <xop:include href="cid:1.a91d6d2e3d7ac4d580@apache.org" xmlns:xop="http://www.w3.org/2004/08/xop/include"> </xop:include>... </soapenv:envelope> --MIMEBoundary4A7AE55984E7438034 content-type: type: application/octet-stream content-transfer-encoding: binary content-id: <1.A91D6D2E3D7AC4D580@apache.org> Binary Data... --MIMEBoundary4A7AE55984E7438034--

Addressing and Routing Options AWSP 1.X relies on SOAP routing and addressing mechanisms for correct operation SOAP URL and Action: HTTP header specifies endpoint information Errors and Replies can only be sent to original sender Client can provide limited information about itself

WS-Addressing WS-Addressing provides richer routing options for the ACORD implementer Source can be identified with more (and more consistent) detail. As noted previously, service granularity is enhanced. Replies and Fault information can be directed d to other endpoints Services can redirect clients to alternative endpoints on subsequent calls. Routing is independent of transfer technology.

Security Considerations In today s regulatory environment, information security is critical: SSL/TLS data security is often not enough True end-to-end security must be ensured Services must authenticate and authorize clients Support for complex security constructs like tokens, tickets, and certificates must be supported

WS-Security Security Advantages WS-Security Security creates consistency in service protection Open framework allows multiple security methodologies to be implemented Standard addresses industry security requirements more completely Allows easier security integration

A Plug an Play approach KiNam Kim, Kevin Kosienski Mass Mutual

Delivery Plan December 2009: AWSP 2.0 draft with Basic Profile, Addressing Profile, Fault handling and Attachment handling February 2010: AWSP 2.0 draft with Security Profile, including SAML April 2010: AWSP 2.0 Candidate Recommendation.

Going Forward AWSP 2 intention is to become the master for specific implementation guides AWSP 2 approach: tool box with guidance based on use cases. Your Use Cases are needed for AWSP validation and enrichment!

Two Blue Hill Plaza 3 rd Floor Pearl River, NY 10965 USA +1 845 620 1700 London Underwriting Centre Suite 1/3 3 Minster Court Mincing Lane London EC3R 7DD United Kingdom +44 (0)20 7617 6400

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback