Re: NEW ISSUE: EPR comparison rule doesn't support Web services gateways/routers from Rich Salz on 2005-01-27 (public-ws-addressing@w3.org from January 2005)

From: Rich Salz <rsalz@datapower.com>
Date: Wed, 26 Jan 2005 23:37:54 -0500 (EST)
To: Francisco Curbera <curbera@us.ibm.com>
cc: Mark Baker <distobj@acm.org>, "public-ws-addressing@w3.org" <public-ws-addressing@w3.org>
Message-ID: <Pine.LNX.4.44L0.0501262332240.24218-100000@smtp.datapower.com>

> Paco, can you not just use a different URI instead of different
> RefParams in order to distinguish between multiple services behind a
> gateway?  If not, why?

Because people want to only expose a single endpoint, and then
have their infrastructure dispatch or route based on things like message
content.  There several reasons for doing this; one of the most compelling
is that they do not want to expose *anything* about their internal
deployment details.  It avoids giving attackers any information.
	/r$
-- 
Rich Salz                  Chief Security Architect
DataPower Technology       http://www.datapower.com
XS40 XML Security Gateway  http://www.datapower.com/products/xs40.html
XML Security Overview      http://www.datapower.com/xmldev/xmlsecurity.html

Received on Thursday, 27 January 2005 04:37:58 UTC