Programming Books C Java PHP Python Learn more Browse Programming Books
Qty:1
  • List Price: $59.99
  • Save: $19.29 (32%)
Only 2 left in stock (more on the way).
Ships from and sold by Amazon.com.
Gift-wrap available.
+ $3.99 shipping
Used: Very Good | Details
Sold by -usedbooks123-
Condition: Used: Very Good
Comment: Very Good Some wear on book from reading, we guarantee all purchases and ship all items via USPS mail.
Access codes and supplements are not guaranteed with used items.
Have one to sell? Sell on Amazon
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See this image

SOA Security Paperback – January 11, 2008

ISBN-13: 978-1932394689 ISBN-10: 1932394680

Buy New
Price: $40.70
21 New from $21.96 28 Used from $0.01 1 Collectible from $22.00
Amazon Price New from Used from
Paperback
"Please retry"
$40.70
$21.96 $0.01
Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


Frequently Bought Together

SOA Security + Web Services Security + Securing Web Services with WS-Security: Demystifying WS-Security, WS-Policy, SAML, XML Signature, and XML Encryption
Price for all three: $118.12

Buy the selected items together
NO_CONTENT_IN_FEATURE

Shop the New Digital Design Bookstore
Check out the Digital Design Bookstore, a new hub for photographers, art directors, illustrators, web developers, and other creative individuals to find highly rated and highly relevant career resources. Shop books on web development and graphic design, or check out blog posts by authors and thought-leaders in the design industry. Shop now

Product Details

  • Paperback: 500 pages
  • Publisher: Manning Publications (January 11, 2008)
  • Language: English
  • ISBN-10: 1932394680
  • ISBN-13: 978-1932394689
  • Product Dimensions: 7.4 x 1.1 x 9.2 inches
  • Shipping Weight: 1.9 pounds (View shipping rates and policies)
  • Average Customer Review: 3.8 out of 5 stars  See all reviews (13 customer reviews)
  • Amazon Best Sellers Rank: #1,693,826 in Books (See Top 100 in Books)

Editorial Reviews

About the Author

Dr. Tamarao (Rama) Kanneganti is Chief Technology Officer (CTO) at HCL EAI Services. Rama has a Ph.D. in programming languages from Rice University and has worked at Bell Labs in databases and large programming systems. Currently, he advises enterprise clients in formulating and evaluating SOA strategies. Rama works out of Grosse Pointe Woods (near Detroit), Michigan, USA.


More About the Authors

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

3.8 out of 5 stars

Most Helpful Customer Reviews

8 of 9 people found the following review helpful By Manas on December 4, 2008
Format: Paperback
Great book for starters.

However it misses the latest Standards in Security such as PKI, SAML, XACML, WS-Federation, WS-Trust and how it pertains to SOA based solution architecture. So much for a book titled "SOA Security". Also it totally ignores to explain how to ensure security at all integration tiers.

Not for security experts, more for people who are starters and do not have time to "Google" either.

Does not do detailed coverage only basic topics related to Web services security around SOAP and WSDL standards with Apache Axis sample APIs (which are out of box and can be googled easily) are discussed. It is a bit difficult to relate the examples to the meat on the book.

Also missing is the information on how to use the abused Apache API examples to compose/build a Secure SOA service base architecture or how to secure BPM workflows, SOA governance, Identity management using federation, entitlement issues with BPM portals,... the list goes on.

This book contains very repetitive content. The only good portion I found was the chapter on XML Web services. The authors should refer Information Security Management Handbook, Sixth Edition (Isc2 Press) and Core Security Patterns: Best Practices and Strategies for J2EE(TM), Web Services, and Identity Management (Sun Core Series) before the next version comes out.
1 Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
10 of 12 people found the following review helpful By Prime Member on January 24, 2008
Format: Paperback
One of the detailed expositions on this subject that I have seen. While it is written to help the architects, designers and developers of services to plan and implement better security, it also gives an excellent overview of the key concepts and challenges.

The book tries to address two key audience groups. One segment is the one with an interest in the broad policy and governance issues related to Security as applied to SOA and service. The other audience segment is from the IT architecture and implementation teams that want to see examples of security as applied to services in the new SOA world. Application and process security issues are explained and illustrated with extensive code samples with detailed walk-throughs of several scenarios.

It is NOT a generic textbook on basics of security or SOA or BPM but is focused on practical issues in architecting and implementing security within SOA and BPM solutions.

There are specific examples of various security models and implementations, including appropriate use of PKI in messages and services, SAML, etc. The authors have provided extensive examples at the publishers website and one of the co-authors has posted some useful links to external reviews and interviews. This was one of the few published books that I have seen discuss Cisco's AON solution.

If you are looking for broader security issues such as intrusion detection, network security, etc. then this is the wrong book. The focus is on Security when implementing a Service Oriented Architecture in an enterprise environment.

The book is physically HEAVY and a very detailed but easy read. I do not recommend reading all the chapters and even the authors seem to agree. It is best to read the initial chapters to cover the concepts and then dive into specific chapters of interest.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
11 of 14 people found the following review helpful By Craig Anderson on February 17, 2008
Format: Paperback
If you are really serious about building security to your SOA stack of applications, then this book would offer only a hello world to security. All you find is a full-blownup security chapter for XML Web services beyond that nothing more. More importantly this book is completely disorganized...all I saw is the basic XML Web services security using out-of-box Axis examples. To the most disappointment, there is no chapter to show how to put-to-gether all these APIs in a real world SOA (as they claim in the title). Why should I read the book if it is repeating the API examples from Axis. This book is nothing but a theoretical junk with no proof. After browsing all the pages, I don't find anything which show how to build a SOA security architecture. The word security is abused and does'nt make sense for this title.
2 Comments Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
5 of 6 people found the following review helpful By Haruo Horii on May 2, 2008
Format: Paperback
Security is indespensable for web services, but difficult to understand and use. There are too many standatds relevant to security, W3C standards and OASIS. I think to understand whole structure need much time. It seems architecture or principle is required to consistent understanding. This book is good to grasp security standard structure. It is regrettable that this book seems written before 2007, the rush of new standards. I hope this book is maintained to the latest standards. Nonetheless it is good for readers to understand security standards structure.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
18 of 25 people found the following review helpful By Prasad Reddy on January 22, 2008
Format: Paperback
I bought this book with lot of expectations but this book FALLS SHORT on providing design and implementation guidance. I likes the introductory coverages and to me it is more like reading Web services security around SOAP and WSDL standards. All I found is about using few Apache Axis samples. It is disappointing to note that this book fully ignored to use standards and technologies such as PKI, SAML and XACML (and its interoperability Profiles), WS-Federation, WS-Trust and related WS-* standards and it's role in SOA based solution archiecture. The authors completely forgot to discuss the core SOA security complexities involved with composing Secure SOA services, securing BPM Workflows, Web services based collaborations, single sign-on and entitlement issues with BPM portals and federated services.

I do agree the introductory part of the book (Chapter 1-2) is a good read beyond that I noticed the book suffers with poorly edited content and it contains highly repetitive content.
3 Comments Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Most Recent Customer Reviews


What Other Items Do Customers Buy After Viewing This Item?