he indisputable appeal of Web services will drive most organizations to evaluate development platforms such as .NET. However, security concerns have always made organizations reluctant to embrace new technologies. Fortunately, well-proven security and network technologies such as virtual private networks (VPNs) and firewalls can improve the security and performance of Web service applications tremendouslyand free developers from having to implement still-evolving, XML-based security technologies into their applications.
Of course, your choice of network and security mechanisms is highly dependant on your Web service's target audience, but every architecture must meet the following two demands:
- Fast network performance
- A level of security that corresponds with the value of the information you must protect.
If you're pressed to implement a high level of security, you may already have all you need to fulfill your objective. This article illustrates how you can leverage the traditional infrastructure security controls found in some common Microsoft technologies to enable a robust and secure foundation for your Web services.