On the performance of SSL vs. WS-Security - Juxtaposition

Posted by Gary E Smith - THE SOA NETWORK at Tuesday, November 21, 2006 5:51 AM and is filed under blog

On the performance of SSL vs. WS-Security


I'm sick and tired of hearing about the false dichotomy of WS-Security versus SSL and why its performance is somehow going to be so much better than SSL transport encryption of SOAP-based web services.  Pundits often point out that SSL has to encrypt the _whole payload_ while WS-Security can be used to digitally sign and/or encrypt only those attributes that absolutely need encrypting or signing.

This kind of reasoning is preposterous and is nowhere near being based on any facts or data, yet these talking points are ever-popular with the "SOA: the Armageddon is near" or WS-NotJustForBreakfastAnymore crowd.


On the performance of SSL vs. WS-Security


___________________________________________________

>> Back to Main Page

Gary E. Smith
SOA Security Architect

 del.icio.us  Stumbleupon  Technorati  Digg 

 
Trackbacks
Trackback specific URL for this entry
  • Trackbacks are closed for this entry.
Comments
  • No comments exist for this entry.
Leave a comment

Comments are closed.