SCOTTSDALE, Ariz.—Hoping to bring new efficiencies to corporate computing, companies here at DEMO 2004 demonstrated a number of products designed to bring increased manageability, measurability and security to existing enterprise investments.
While Web Services have been hailed as the next big thing, many enterprises have been reluctant to deploy outside of their firewalls due to poor security. Two companies today introduced firewalls for Web services designed to protect enterprises from XML viruses, parser attacks and schema poisoning—all attacks network firewalls and intrusion prevention systems are currently unable to detect.
Forum Systems Inc., in Sandy, Utah, launched the XWall Web Services Firewall, which it hailed as the first firewall for Web services. XWall scans WSDL (Web Services Description Language) schemas and XML messages to detect XML-related threats and to prevent intrusions. The firewall also recognizes attacks based on knowledge of Web services operations, users and message using signature threat detection capabilities.
Reactivity Inc. introduced the Reactivity XML Firewall 2300. The XML Web services security appliance applies multiple security policies to bring granularity to Web services security.The Reactivity XML Firewall 2300 handles SSL termination, as well as the authentication and authorization to control access to Web services. The product also performs data validation on requests from external systems to prevent malicious activity.