As Oracle SOA Suite is based on SOA principles, by default Oracle SOA suite provides flexibility to separate the service layer from logical layer. There is a high possibility of implementing a variety of security models. Some of the security models supported by Oracle SOA are as follows:
Authentication by verifying the identity of invoker
Authorization to control various levels of resource access
Privacy and data security by XML encryption
Data integrity by using digital signature and cryptography
Oracle SOA suite provides efficient approach of implementing security in the service infrastructure using Oracle Web Service Manager (OWSM). OWSM provides functionality to define the security policies and applies those policies to the service component in order to enforce the policies. This approach helps the integration architect and development team to focus on achieving the functional requirement rather than security. At the same time it provides complete control to...