Sarvega Appliance Inspects XML Traffic
The Guardian Gateway Web services security appliance filters incoming XML traffic to find sophisticated new attacks.Until recently, the term "XML security" essentially has been used interchangeably with "Web services security." Because XML is the basis for Web services, many vendors and enterprises have treated the two as one. But one vendor, Sarvega Inc., is hoping to change that perception with its Guardian Gateway XML security appliance, which it unveiled this week. Although the appliance includes support for all of the existing Web services security standards, such as WS-Security, SAML and XML Dsig, it also is capable of filtering incoming XML traffic to find sophisticated new attacks. Because Web services traffic comes in over port 80, just as normal HTTP traffic does, it typically passes directly through firewalls with little or no inspection. The Guardian box is designed to parse the XML traffic, checking for low-level issues such as IP spoofing as well as more severe problems like buffer overrun or SQL injection attacks.
This kind of deep inspection of XML traffic is new to the Web services world, and is part of the companys proprietary XESOS (XML EventStream Operating System) Gauntlet protection architecture. The OS was purpose-built by Sarvega with security in mind from the start.
Be sure to add our eWEEK.com security news feed to your RSS newsreader or My Yahoo page: