IBM WebSphere DataPower SOA Appliances Part III: XML Security Guide

An IBM Redpaper publication

Published 01 April 2008

cover image

IBM Form #: REDP-4365-00
(164 pages)

More options

Rate and comment

Authors: Juan Rodriguez, Somesh Adiraju, Adolfo Rodriguez, Srinivasan Muralidharan, Jacqueline Swett


IBM® WebSphere® DataPower® SOA Appliances represent an important element in the holistic approach of IBM to service-oriented architecture (SOA). IBM SOA appliances are purpose-built, easy-to-deploy network devices that simplify, help secure, and accelerate your XML and Web services deployments while extending your SOA infrastructure. These appliances offer an innovative, pragmatic approach to harness the power of SOA. By using them, you can simultaneously use the value of your existing application, security, and networking infrastructure investments.

This series of IBM Redbooks publications is written for architects and administrators who need to understand the implemented architecture in WebSphere DataPower appliances to successfully deploy it as a secure and efficient enterprise service bus (ESB) product. These papers give a broad understanding of the new architecture and traditional deployment scenarios. They cover details about the implementation to help you identify the circumstances under which you should deploy DataPower appliances. They also provide a sample implementation and architectural best practices for an SOA message-oriented architecture in an existing production ESB environment.

Part 3 of the series, this part, describes how to use the DataPower appliance to secure incoming Web Services within an SOA environment, how to integrate your DataPower appliance with WebSphere Message Broker, and how to provide protection against security attacks by implementing the XML Denial of Service (XDoS) provided by DataPower appliances. The entire series includes the following papers:

  • "IBM WebSphere DataPower SOA Appliances Part I: Overview and Getting Started," REDP-4327
  • "IBM WebSphere DataPower SOA Appliances Part II: Authentication and Authorization," REDP-4364
  • "IBM WebSphere DataPower SOA Appliances Part III: XML Security Guide," REDP-4365
  • "IBM WebSphere DataPower SOA Appliances Part IV: Management and Governance," REDP-4366

Table of contents

Chapter 1. Web Services security improvements
Chapter 2. Integration with WebSphere Message Broker
Chapter 3. XML threat protection in DataPower
Appendix A. Web Services security issues
Appendix B. Building message flows in WebSphere Message Broker
Appendix C. Additional material

Follow IBM Redbooks

Follow IBM Redbooks