In its rush to embrace Web services, the computer industry is unknowingly inviting hackers to waltz through gaping structural holes. It's a ticking time bomb that needs to be defused.

Are Web services developers condemned to re-committing security oversights of the past? Hurwitz says it certainly seems so--if reliance on SSL encryption is any indication.

The Web Services Interoperability Organization (WS-I) announced on Tuesday publication of its WS-I Basic Security Profile 1.0 , serving as a guide for enabling secure, interoperable Web services.

WS-I seeks feedback The Web Services Interoperability Organization (WS-I) on Tuesday announced availability of the WS-I Basic Security Profile Working Group Draft, an early version of what is ...

The company readies updates to its identity management server and Web services application development suite, part of a strategy to closely link both product lines.

WS-Security is the premier Web services standard that handles more complex authentication, confidentiality, and integrity for SOAP messages. It supports passwords, Kerberos, X.509 digital ...

A new company founded by a group of Massachusetts Institute of Technology graduates aims to be among the first vendors to tackle Web services security.