Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Layer 7 Technologies' SecureSpan Gateway 3.5

The five-year-old SOA security market already has casualties--two companies, Oblix and Westbridge, were acquired by service-oriented architecture management vendors. Layer 7 Technologies, however, holds fast to its security-only position. With its superior software and a boost from Tarari's RAX-J (Random Access XML for Java) acceleration hardware, Layer 7's SecureSpan Gateway and SecureSpan Bridge perform as well as custom, silicon-enhanced appliances from IBM's DataPower division and Forum Systems.

Layer 7's software solution includes comprehensive SOA security. Accelerated by a Tarari RAX-J card, SecureSpan Gateway performs on par with hardware-accelerated competitors from Forum Systems and Data Power. Its SecureSpan Bridge provides an unintrusive solution to integrate SOA security on the client or server.

Layer 7 Technologies joins Forum Systems as one of the last vendors in the SOA market to focus solely on SOA security. Security-only vendors offer a wider variety of threat-prevention features than those that provide both security and management, and tend to do a better job of hiding the complexity of the PKI infrastructure.

Layer 7's claim to providing comprehensive support for SOA security through WS-Security and default protection against XML bombs, coercive parsing, WSDL scanning and entity expansion attacks is valid. The management console still needs usability improvements, and the company acknowledges the need to provide a more granular application of policy to services.

Layer 7 Technologies SecureSpan Gateway 3.5


Even without Oblix (acquired by Oracle) and Westbridge (Actional), Layer 7 has some company in the SOA security field, but its competitors are expanding their reach. Forum Systems maintains its XWall and Sentry lines, but it is branching out into new arenas. IBM's WebSphere group recently announced its DataPower SOA Appliances. Although the DataPower XS40 keeps security in the forefront, its management integration with ITCAM (IBM Tivoli Composite Application Manager) and TAM (Tivoli Access Manager) looms just as large.

  • 1