XML Appliances for SOA and Web 2.

Secure, Simplify and Scale Your Web Services

XML Accelerator XML Data Screen

Speed XML Processing, Cleanse XML of Exploits,

Validation and Transformation Malformed Data and
Restricted Content
Problems Addressed
• Accelerated XML message processing offload Problems Addressed
• Accelerated document transformation and • Prevent XML attack and intrusion
concatenation • Filter XML content
• Accelerated XML data validation • Validate data structures
• Message versioning between applications • Set traffic limits
• ESB co-processing • Secure REST and AJAX

XML Firewall and VPN XML Networking Gateway

Secure Your SOA, Share Policy Based Service

Your SOA Mediation and Application
Problems Addressed
Oriented Networking
• Control access to services and operations Problems Addressed
• Secure service WSDL interfaces • Application Oriented Networking and XML
• Enforce WS* and WS-I standards routing

• Manage security for B2B relationships • Service virtualization

• Audit transactions • Centralized SLA enforcement

• Transport and protocol mediation
• Runtime Enforcement of SOA Governance
policies
 XML Appliances for SOA and Web 2.0

Example Deployment Scenarios:

XML Accelerator - ESB XML Data Screen - Portal

External XDOS ?
? Attack
Web Clients
Enterprise Service Bus
? Web Service
Legitimate
Traffic
?
?
Parser Web Service
? Attack

SecureSpan XML
Data Screen Cluster

SecureSpan
XML Accelerator

XML Firewall and VPN - B2B XML Networking Gateway - SOA Governance
Corporate Network
Service Endpoints SecureSpan
SecureSpan (Secure Zone) Manager
Manager

WS-Policy
Service
Registry
Consumer with WS-Policy
Repository
hard coded policy
WS-Policy
Business Partner Corporate Identity
Server WS-Policy
SecureSpan XML Internal Firewall
Firewall Cluster
External Firewall (DMZ)
WS-Policy
SecureSpan
WS-Metadata
Exchange XML Networking
Service Gateway Cluster Web Services
SecureSpan Consumer with
WS-Policy
XML VPN Client SecureSpan
XML VPN Client

Innovations:
• First XML appliances to combine 64-bit multi-processor architecture with XML ASIC and hardware crypto acceleration
• Automatic clustering for enhanced scalability and availability
• Addresses non-SOAP based Web services including REST and AJAX
• WS-Policy based service security and mediation
• Policy level integration with leading registries for SOA Governance enforcement
• Identity integration with leading IAM, SSO and Federation products
• Supports edge, datacenter, ESB and federated B2B deployments

Supported Standards and Specifications:

• XML 1.0, SOAP 1.1, REST, AJAX, XPath 1.0, XSLT 1.0, WSDL 1.1, XML Schema & DTD, LDAP 3.0, SAML 1.1/2.0, PKCS #10, X.509 v3 Certificates, Kerberos, W3C XML
Signature 1.0, W3C XML Encryption 1.0, FIPS 140.2, SSL/TLS 2.0 / 3.0, SNMP, SMTP, FTP, HTTP/HTTPS, JMS 1.0, MQ Series, Tibco EMS 4.0, WS-Security 1.0, WS-Trust 1.0,
WS-SecureConversation, WS-MetadataExchange, WS-Policy, WS-SecurityPolicy, WS-PolicyAttachment, WS-SecureExchange, WSIL, WS-I, WS-I BSP, UDDI 3.0

Form Factors:
• 1U rack mount appliance, 64-bit multiprocessor platform with XML acceleration ASIC, SSL accelerator and dual GE/FE NICS
• Server software for Linux and Windows Server 2003 platforms*
* Note: Supported features vary by product. Go to www.layer7tech.com or contact Layer 7 for details

R
Web Site: www.layer7tech.com
Email: info@layer7tech.com
Phone: 800.681.9377

Copyright © 2006 Layer 7 Technologies Inc. All rights reserved. SecureSpan and the Layer 7 Technologies design mark are trademarks of Layer 7 Technologies Inc.