Portal de Periódicos da CAPES

Web Services Security: Is the Problem Solved?

2004; Taylor & Francis; Volume: 13; Issue: 3 Linguagem: Inglês

10.1201/1086/44530.13.3.20040701/83066.4

1934-869X

Carlos Gutiérrez, Eduardo Fernández‐Medina, Mario Piattini,

Distributed systems and fault tolerance

Abstract This paper demonstrates that much work needs to be done in Web services security standardization. It explains the new Web services security threats and mentions the main initiatives and their respective specifications that try to prevent them. Recently Web services technology has reached such a level of maturity that it has evolved from being a promising technology to becoming a reality on which IT departments are basing their operations to achieve a direct alignment with the business operations that they support.1 In fact, based on the most recent reports from IDC (International Data Group),2 approximately 3300 Web services- based technology projects were deployed all over North America in 2002 and it is expected that the expenses will approach $3 billion in 2003. This seems to be a logical consequence of the numerous advantages offered by the Web services paradigm: • Standard-based middleware technology, • Business services high reusability level, • Easy business legacy systems leverage, and • Integration between heterogeneous systems.