The main two reasons to justify the capital expense of an XML Gateway are
performance and security. When the enterprise deems those two reasons
relevant it is a no-brainer to make the XML gateway a requirement.
Now let's take a simpler scenario where performance is not a problem and
security is meant to be accomplished using SSL. I claim even in this scenario
purchasing a dedicated server is a wise investment. Let's assume you intent
to invoke web services from multiple partners. The number of partners could
potentially be on the thousands. As is the case, currently most of this
partners do not have any web services as of yet. So they start as usual
writing it from scratch using something like .NET. These projects tend to be
low key and usually prototypes, so the use of a gateway is not even
Most scenarios, in addition to using SSL mutual auth to secure th... (more)
XML Magazine on Ulitzer
These days, XML Gateways are a core infrastructure component of any
enterprise SOA deployment. XML Gateways provide the ability to integrate
services securely with granular access control, data-level encryption,
integrity through signatures and XML threat mitigation. XML Gateways can be
deployed as a hardware appliance or as a software gateway ( also as cloud
based instances). Both of these form factors have their advantages and
disadvantages. This article provides readers with a quick synopsis of the
pros and cons of each form factor.
XML Gateway Ha... (more)
It is very rare today to find a business application that has not exposed its
interface via SOAP/XML. XML is the building block that enables business or
consumer applications to exchange data in a standard structured format. The
exchange of XML data typically takes place through an SOAP/XML interface
based on the Web Services standard or through the REST-based standard.
These flexible standards that richly describe interface functions of an
application also introduce a host of XML and Web Services security
vulnerabilities. This article is a quick guide to most common XML and W... (more)
Mark Bakker from Xebia -- a specialized international IT consultancy focusing
on Enterprise Java -- published an interesting overview of IBM DataPower
Security Gateway and Forum Sentry.
"The Forum sentry has some advantages when you compare it to the IBM
Datapower XML Security Gateway XS40. The main difference is that you can do
more whith only one appliance. You can replace an IBM Webseal, a virus
scanner and an IBM Datapower XS40 with only one device.
My advice is to take this device in considerations where you have to choose
for an XML firewall/ hardware ESB."
Looks like Forum Sentry, the pioneer and leader of XML Gateway and XML
Firewall technology has announced its latest product that now addresses the
growing need for handling not just XML/Web services traffic, but also
From a technology standpoint, this is not a revolutionary jump, but a gradual
evolution of the XML Gateway that now handles HTTP/HTML-header information,
which is by far easier than looking deeper into the XML packets.
However, the business implication of this is significant since companies can
now use a single platform for HTML and XML processi... (more)