Infoworld Channels

InfoWorld Home / Security / Security Adviser / This Internet fix is no pipe dream

Roger A. Grimes

February 27, 2009

This Internet fix is no pipe dream

A simpler, more modest proposal for securing the Internet taps existing standards for Web services, security, identity, and authentication

By Roger A. Grimes | InfoWorld

Follow @rogeragrimes

Print|

Some people may think me a total whack job, but I think I have a serious plan for making the Internet secure. And it's not a pipe dream. The Internet can be made significantly safer starting today.

In May of last year, I published my thoughts on how to save the Internet in a whitepaper [PDF] and a series of Security Adviser posts, including "Fixing the Internet" and "Defending 'Fixing the Internet'." At the time I believed that it would take a bunch of new protocols to begin to pull off my vision, and I still believe that, at least for the full vision.

[ Did Roger finally get it right? Or should he have stuck to his earlier theories in "Fixing the Internet" and "Defending 'Fixing the Internet'"? Check them out and comment below. ]

However, I did a disservice by not discussing the protocols and standards that already exist today, particularly a number of relatively new security protocols that are already helping to make the Internet a safer place. Created by many, many experts, these protocols aren't pie-in-the-sky dreams, but have already emerged as de facto standards. Any future Internet-based security system will likely use them, and perhaps contain all of them.

These are some of the protocols that are helping to build a more secure Internet:

Simple Object Access Protocol (SOAP) is a platform independent, XML-based protocol for sending messages (that is, data) between Web services and participating networks. If HTTP is the circulatory system, SOAP messages are the red blood cells.

Security Assertion Markup Language (SAML) is an XML-based standard for communicating identity, authentication, and authorization information between security domains. SAML 2.0 is quickly being accepted and adopted by most major players.

Web Services specifications and extensions (WS-*) are various (often unrelated) messaging standards related to Web services and frequently surrounding the security of Web services. The Web Services (WS) specifications themselves deal with how various applications and computers can successfully and reliably communicate over untrusted networks such as the Internet.

Print|

additional resources

Service Desk Comparative Report

White Paper

Service Desk Comparative Report

Gartner's recent magic quadrant for IT Service Support Management included no vendors as leaders or innovators. Learn why and how ITinvolve is delivering an innovative service desk solution that empowers IT staff through social collaboration and visualization to improve incident analysis and triage to speed incident resolution time.

Read now »

List of all recent posts

Recommended Resources

See all White Papers / Webcasts Recommended Resources

Recommended Resources

See All Jobs » Post a job for $295 »

Jobs powered by SimplyHired

Must-attend webinar: Implementing Cloud Computing in the Enterprise Redefine Mobility Mgmt at Enterprise Mobile Hub Increase agility with the secure, high performance Enterprise Cloud from XO Control Your IT Universe - From the Palm of Your Hand with DameWare® Mobile Arbor Networks stops DDoS and advanced threats - learn more Panasonic Toughbook® mobile computers are built to keep you running.Powerful and secure remote support with LogMeIn Rescue - Try it free Increase your speed and agility with big data analytics from SAP®.Intel®-based tablets think the way you work. Find one for your business Splunk - Machine data goes in, business insight comes out. Learn more.Cisco SmartPlay -UCS C24 M3 Rack Server with Intel® Xeon® processors Jumpstart business transformation with VCE solutions for SAP Platform without Boundaries - Extend your Datacenter Check out Gartner Predicts 2013: Application Integration The next performance revolution is here - Compuware APM for Mainframe.Connect to the Cloud faster with Comcast Business EMC Introduces World's Most Powerful Hadoop Distribution: Pivotal HD openBench Labs: How Diskeeper 12 Keeps the Latest Windows OS Running Like New IDC Report: Managing the I/O Explosion Without Extra Hardware Storage, speed, security. Lexar Media Enterprise solutions get down to business.

Read how Big Data can fuel your business with Windows Embedded.Deliver secure, high performance cloud resources for your enterprise Get better security and performance for your apps in the cloud Is your firewall obsolete, security-deficient, and application unaware?Nytro Datacenter App Acceleration. Download white paper to learn more.AirWatch - Leader in the Gartner Magic Quadrant Report for MDM. Download Now Get solid, ultrafast transactional performance at low cost with SAP®.Improve your ROI by the power of three with HP Converged Storage.Data Storage Stress? AT&T shows you four easy ways to get relief here.Intel ProLiant -Double compute density to tackle bigger workloads with HP ProLiant servers. Learn more Cisco SmartPlay - limited-time offers on Cisco UCS C-Series Servers Focus on business, not infrastructure with VblockTM Systems from VCE The power of HP Converged Infrastructure is here. Click here to learn more.What's your Integration Strategy? View Gartner Predicts 2013: Application Integration.Transform enterprise IT with ServiceNow. See how easy IT can be.Save ~$500 Per Node over 4 Years with Supermicro® FatTwin™ SuperServer®!Need low cost storage to protect precious content? Six is the Fix! Use LTO-6 Tape!Top Ten Myths About Recovering Deleted Files Free VMware Backup: VeeamZIP for your VMs!Webcast: A Breakthrough in Service Delivery for Data Center Workloads

InfoWorld Technology Marketplace

» BUY A LINK NOW

©1994-2013 Infoworld, Inc.