- Chinese Internet censorship: An inside look
- Desktops of the future here today
- What network CEOs really make
- DoD sold counterfeit network gear
- Sci-Fi's goofiest gadgets and technology
Rss FeedRss Feed
Crackin' the Kraken bot. Listen now!
Wireless dangers at airports. Listen now!
Discover Juniper's continued commitment to the enterprise with its new line of LAN switches and a series of partnerships with several IT vendors, including IBM, Microsoft and Oracle. Customers can expect a tighter integration between Juniper and its vendor partner's products. Get all of the details in this informative report from respected consulting firm IDC.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
HP's Network Lifestyle Management can help you automate network processes and improve NOC efficiency. This webinar is part three of a four part series on Business Services Management (BSM) evolution to help you better align IT with business objectives. Register for this on-demand webcast now.
what
is wrong
with you
dont you
like to
read two
inch text
articles?- Anon3233
ORLANDO -- Building a central reservation system based on cutting-edge Service-Oriented Architecture technology has meant a decisive overhaul in underlying IT security at hotel group Starwood Hotels & Resorts International.
Patrick Foley, director of global technology compliance at Starwood, whose hotel chains include St. Regis, Sheraton and Westin, this week described how the move to XML-enabled SOA for a new central reservation system has impacted the underlying corporate security in sometimes unexpected ways. SOA, in defining systems as flexible services, has meant existing perimeter security is no longer as effective, encryption is more difficult, and logging requirements are intensified for audit and regulatory compliance. Foley, who spoke about Starwood's shift to SOA at the Infosec World Conference in Orlando, provided insight on security consequences of SOA.
"Service-oriented architecture defines systems as a series of services," said Foley. "It's the ability to link services together in a way that they can be used in many different processes, including credit-card authorization. The good thing is, you can go global, no longer limited by your data center or network."
However, the transformation must also be on the security level, Foley emphasized, acknowledging that Starwood's first SOA project, launched a few years back by an enthusiastic IT department eager to use the latest software development techniques, suffered a few setbacks that slowed it down.
The chief problem early on was failing to understand how necessary it was to bring in a security architect to advise developers on how to build SOA according to security standards, such as those promulgated by OASIS and the W3C.
"You will need a security architect," advised Foley, noting that Starwood ended up turning to a data architect to be the security architect for the SOA-based central reservation system. Some of the security impact that Starwood has seen in the evolution of the new reservation system, now undergoing beta testing, is that SOA engenders far more logging and auditing, which must be done for regulatory compliance.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
