{"id":4827,"date":"2012-06-25T17:22:02","date_gmt":"2012-06-25T22:22:02","guid":{"rendered":"http:\/\/jianmingli.com\/wp\/?p=4827"},"modified":"2012-07-05T21:38:11","modified_gmt":"2012-07-06T02:38:11","slug":"1z0-451-secure-services-and-composite-applications","status":"publish","type":"post","link":"https:\/\/jianmingli.com\/wp\/?p=4827","title":{"rendered":"1Z0-451: Secure services and Composite Applications"},"content":{"rendered":"
\n

Contents<\/h2>\n
    \n\t
  1. \n\t\tExplain Web Services and Composite Security<\/a>\n\t\t
      \n\t\t\t
    1. \n\t\t\t\tOverview<\/a>\n\t\t\t<\/li>\n\t\t\t
    2. \n\t\t\t\tWSM Policies<\/a>\n\t\t\t<\/li>\n\t\t\t
    3. \n\t\t\t\tWebLogic WS Policies<\/a>\n\t\t\t<\/li>\n\t\t\t
    4. \n\t\t\t\tSecurity Types<\/a>\n\t\t\t<\/li>\n\t\t\t
    5. \n\t\t\t\tSecurity Levels<\/a>\n\t\t\t\t
        \n\t\t\t\t\t
      1. \n\t\t\t\t\t\tTransport Level Security<\/a>\n\t\t\t\t\t<\/li>\n\t\t\t\t\t
      2. \n\t\t\t\t\t\tApplication (or Message) Level Security<\/a>\n\t\t\t\t\t<\/li>\n\t\t\t\t<\/ol>\n<\/ol>\n\t\t\t
      3. \n\t\t\t\tDescribe the Fusion Middleware security architecture<\/a>\n\t\t\t<\/li>\n\t\t\t
      4. \n\t\t\t\tUnderstand Security Policy Management, Identity Propagation<\/a>\n\t\t\t<\/li>\n\t\t\t
      5. \n\t\t\t\tDescribe OWSM Agents<\/a>\n\t\t\t\t
          \n\t\t\t\t\t
        1. \n\t\t\t\t\t\tWSM Overview<\/a>\n\t\t\t\t\t<\/li>\n\t\t\t\t\t
        2. \n\t\t\t\t\t\tWSM Tasks<\/a>\n\t\t\t\t\t<\/li>\n\t\t\t\t\t
        3. \n\t\t\t\t\t\tMain Components of WSM Architecture<\/a>\n\t\t\t\t\t<\/li>\n\t\t\t\t<\/ol>\n\t\t\t
        4. \n\t\t\t\tReferences<\/a>\n\t\t\t<\/li>\n<\/ol>\n<\/ol>\n<\/div>\n
           <\/div>\n

          This is part of 1Z0-451: Oracle SOA Foundation Practitioner Exam<\/a><\/p>\n

          << Previous<\/a><\/p>\n

          Explain Web Services and Composite Security<\/h2><\/span>\n

          Overview<\/h3><\/span>\n

          * Two categories of Oracel WS:
          \n– Oracle Infra WS
          \n– WebLogic (JEE) WS
          \n* Two types of policies (only a subset can interop):
          \n– WSM Policies
          \n– WL WS Policies<\/p>\n

          WSM Policies<\/h3><\/span>\n

          * Provided by WSM
          \n* Can be attached using JDev to
          \n– SOA
          \n– ADF
          \n– WebCenter WS
          \n* Can also be attached to JAX-WS WS but not<\/strong> to JAX-RPC WS
          \n* Managed from EM or WLST<\/p>\n

          WebLogic WS Policies<\/h3><\/span>\n

          * Provides by WLS
          \n* Only a subset can interop with WSM policies
          \n* Managed from WL Console<\/p>\n

          \"\"<\/a><\/h6><\/span>\n

          Security Types<\/h3><\/span>\n

          * Authentiation
          \n* Authorization (or Access Control)
          \n* Confidentiality
          \n* Integrity (or non-repudiation)<\/p>\n

          Security Levels<\/h3><\/span>\n

          Transport Level Security<\/h4><\/span>\n

          * Provided by SSL<\/strong>
          \n* Only protects data in transit<\/strong><\/p>\n

          Application (or Message) Level Security<\/h4><\/span>\n

          * Provided by WS-Security (XML Encryption, XML Security)
          \n* Support five types of security tokens:
          \n– Username
          \n– X.509
          \n– Kerberos
          \n– SAML
          \n– REL (rights markup)<\/p>\n

          Describe the Fusion Middleware security architecture<\/h2><\/span>\n

          * See Securing SOA Composite Applications<\/a><\/p>\n

          Understand Security Policy Management, Identity Propagation<\/h2><\/span>\n

          Describe OWSM Agents<\/h2><\/span>\n

          WSM Overview<\/h3><\/span>\n

          * Provides a policy framework to manage and secure web services consistently across organization
          \n* Can be at design time (by developers) and run time (by admins)
          \n* Based WS-Policy standard
          \nPEP => OPSS => WLS Sec<\/p>\n

          WSM Tasks<\/h3><\/span>\n

          * Handle WS-Security
          \n* Define auth\/authn policies against an LDAP directory
          \n* Generate standard security tokens (e.g. SAML tokens) to propagate identities across multiple web services used in a single transaction
          \n* Segment policies into different namespaces by creating policies within different folders
          \n* Examine log files<\/p>\n

          Main Components of WSM Architecture<\/h3><\/span>\n
          \"\"<\/a><\/h6><\/span>\n

          * EM: enable admins to manage, secure, monitor web services
          \n* JDev
          \n* WSLT: command line tools
          \n* Policy Manager: reads\/writes policies (either predefined or custom policies) from Oracle WSM Repository
          \n* WSM Agent: Manages the enforcement of policies via the Policy Interceptor Pipeline
          \n* Policy Interceptors: enforces policies which include:
          \n– reliable messaging
          \n– management
          \n– addressing
          \n– security
          \n– MTOM
          \n* WSM Repository (db or file system): stores WSM metadata such as:
          \n– policies: comprise of one or more policy assertions of the same policy category (WS-RM, Management, Addressing, Security, MTOM)
          \n– policy sets
          \n– assertion templates
          \n– policy usage data
          \n* MDS: as WSM repository<\/p>\n

          References<\/h2><\/span>\n

          * Understanding Oracle WSM Policy Framework<\/a>
          \n*           Oracle\u00ae Fusion Middleware Security and Administrator’s Guide for Web Services 11g Release 1 (11.1.1)<\/a><\/p>\n

          Next >> SOA 11g Integration Points<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

          This is part of 1Z0-451: Oracle SOA Foundation Practitioner Exam OPSS => WLS Sec WSM Tasks * Handle WS-Security * Define auth\/authn policies against an LDAP directory * Generate standard security tokens (e.g. SAML tokens) to propagate identities across multiple … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[107,104],"tags":[588,144,576,562,146],"class_list":["post-4827","post","type-post","status-publish","format-standard","hentry","category-certification","category-weblogic11g","tag-11g","tag-1z0-451","tag-security","tag-soa","tag-wsm"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p8cRUO-1fR","_links":{"self":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4827","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4827"}],"version-history":[{"count":10,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4827\/revisions"}],"predecessor-version":[{"id":4930,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4827\/revisions\/4930"}],"wp:attachment":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4827"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4827"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4827"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}