Скачать презентацию DEV 371 Visual Studio 2005 WSE 3 Скачать презентацию DEV 371 Visual Studio 2005 WSE 3

e94a37cd0e95592274c36eb6d7fa0603.ppt

  • Количество слайдов: 39

DEV 371 Visual Studio 2005 + WSE 3. 0 Web Services开发的强大平台 杨滔 Developer Evangelist DEV 371 Visual Studio 2005 + WSE 3. 0 Web Services开发的强大平台 杨滔 Developer Evangelist 合作开发部 微软有限公司

日程 人们所期望的Web Service. NET Framework 2. 0 + WSE 3. 0 简便的开发安全的Web Service 简化面向服务的应用的开发 日程 人们所期望的Web Service. NET Framework 2. 0 + WSE 3. 0 简便的开发安全的Web Service 简化面向服务的应用的开发 通向Indigo的必经之路 Indigo,天下归一

什么是 Web Services 一组为实现丰富和可互操作的通讯的协议和规范 通常称作 WS-* 规范 规范由Microsoft和其他业界企业一起制定 例如 IBM and BEA 与传输层无关 可以使用 什么是 Web Services 一组为实现丰富和可互操作的通讯的协议和规范 通常称作 WS-* 规范 规范由Microsoft和其他业界企业一起制定 例如 IBM and BEA 与传输层无关 可以使用 HTTP, TCP等等. 可组合性 只使用和应用相关的协议和规范

Web Service Architecture - Web Service全貌 Security Management Reliability Business Process Transactions … 应用和 Web Service Architecture - Web Service全貌 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

Fundamentals Secure, Reliable, Transacted As of 2/2004 WS-I BP 1. 0 Security Roadmap SRT Fundamentals Secure, Reliable, Transacted As of 2/2004 WS-I BP 1. 0 Security Roadmap SRT Web Services Whitepaper Reliable Messaging Roadmap WS-Coordination WS-Transaction WS-Atomic. Transaction WS-Business. Activity WS-Reliable. Messaging WS-Federation WS-Trust WS-Security Addendum WS-Security Profile for Tokens WS-Federation Active Requestor Profile WS-Security SOAP Message Security WS-Security Username Token Profile WS-Security X. 509 Certificate Token Profile Security WS-Security Interoperability Transactions Whitepapers Reliability WS-I formed Evolve and Extend WS-Security Kerberos Binding UDDI 2. 0 WSDL UDDI 3. 0 WS-Policy 1. 1 WS-Policy. Attachments 1. 1 WS-Policy. Assertions 1. 1 WS-Inspection WS-Policy. Attachments WS-Policy. Assertions WS-Security. Policy SOAP 1. 2 SOAP Messages with Attachments 2000 2001 WS-Referral WS-Routing DIME 2002 WS-Addressing WS-Attachments 2003 Messaging SOAP 1. 1 WS-Discovery WS-Metadata. Exchange WS-Eventing MTOM 2004 Metadata UDDI 1. 0 2005

. NET Web Services ASMX是. NET Framework对基本Web Service 的实现 支持基本的Web Service 没有实现 WS-* 规范 . NET Web Services ASMX是. NET Framework对基本Web Service 的实现 支持基本的Web Service 没有实现 WS-* 规范 WSE是对. NET Framework的扩展 可以扩展ASMX的行为 支持部分WS-*规范 Indigo是新一代的Web service的实现 对WS-*, messaging, queuing, transactions 提供统一的编程模型

Web Services Architecture ASP. NET Web Services Security Management Reliability Business Process Transactions … Web Services Architecture ASP. NET Web Services Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

WSE 3. 0和VS 2005的集成 WSE 3. 0 具集成到Visual Studio 2005开发环 境中 扩展了ASMX 的编程模型 Alternative WSE 3. 0和VS 2005的集成 WSE 3. 0 具集成到Visual Studio 2005开发环 境中 扩展了ASMX 的编程模型 Alternative transports e. g. TCP Hosting environments e. g. Console apps Messaging APIs remain Soap. Client, Soap. Service

VS 2005 和 WSE 3. 0集成 VS 2005 和 WSE 3. 0集成

目标 Indigo. NET Framework v 2. 0 WSE v 3. 0 通向Indigo 简化面向服务的应用的开发 开发安全、功能丰富的 目标 Indigo. NET Framework v 2. 0 WSE v 3. 0 通向Indigo 简化面向服务的应用的开发 开发安全、功能丰富的 Web Service

Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

安全性是WSE的首要目标 支持如下WS-*规范 WS-Security WS-Trust WS-Secure. Conversation 安全性是WSE的首要目标 支持如下WS-*规范 WS-Security WS-Trust WS-Secure. Conversation

安全的通讯 传输层的安全性 Encrypted 发送者必须信任中介 消息在中介处需要解密 整条信息加密 仅能使用有限的传输协议 Encrypted 安全的通讯 传输层的安全性 Encrypted 发送者必须信任中介 消息在中介处需要解密 整条信息加密 仅能使用有限的传输协议 Encrypted

安全的通讯 消息级别的安全性 与传输层无关的端到端的安全性 支持多种加密技术 可以加密消息的某一部分 发送者只需信任最终的接受者 The signature is stored with the data 安全的通讯 消息级别的安全性 与传输层无关的端到端的安全性 支持多种加密技术 可以加密消息的某一部分 发送者只需信任最终的接受者 The signature is stored with the data

Turnkey Security Scenario Username. Over. Certificate Internet Intranet Username/Password for Authentication Confidential, signed request Turnkey Security Scenario Username. Over. Certificate Internet Intranet Username/Password for Authentication Confidential, signed request using a client key protected with the server certificate Confidential, signed response using the supplied client key Application Server Authenticate username/ Password

Turnkey Security Scenarios 基于业界的最佳实践 Each scenario represented as an assertion Username. Over. Certificate Annonymous. Turnkey Security Scenarios 基于业界的最佳实践 Each scenario represented as an assertion Username. Over. Certificate Annonymous. Over. Certificate Username. Over. Transport Kerberos Mutual. Certificate

Security with WSE 3. 0 Security with WSE 3. 0

Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

WSE 3. 0支持WS-Policy Describes requirements for incoming and outgoing messages as policy assertions Limitations WSE 3. 0支持WS-Policy Describes requirements for incoming and outgoing messages as policy assertions Limitations of Policy in WSE 2. 0 Request and response messages secured separately Made to think in low level terms Policy files are simplified Simplifies security through the turnkey security assertions New object model for policy // Set the Client. Policy onto the proxy service. Proxy. Set. Policy("Client. Policy");

Service Orientation Tenets 1. 2. 3. 4. Services are autonomous Boundaries are explicit Services Service Orientation Tenets 1. 2. 3. 4. Services are autonomous Boundaries are explicit Services share schemas not types Compatibility based on policy

Security Policy Security is a deployment consideration Policy • Only accept Username/Password for authentication, Security Policy Security is a deployment consideration Policy • Only accept Username/Password for authentication, signed and encrypted with server certificate • Only callers who are in the Manager role Policy • Only accept Kerberos authentication

Policy Pipeline Architecture Policy assertions transform the message Policy describes an input pipeline C Policy Pipeline Architecture Policy assertions transform the message Policy describes an input pipeline C u s to m T raci n g Application Processing C u s to m … and an output Pipeline T raci n g S e c u r i ty Output Soap Message S e c u r i ty Input Soap Message

Security with Policy Security with Policy

Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

MTOM Message Transmission Optimization Mechanism (MTOM) MTOM取代了对DIME & WS-Attachments 益处 和 WS-Security 可以保护传输的数据 简化的变成模型 MTOM Message Transmission Optimization Mechanism (MTOM) MTOM取代了对DIME & WS-Attachments 益处 和 WS-Security 可以保护传输的数据 简化的变成模型 减少消息的大小 Security Simplify Reduction

使用MTOM传输大数据 使用MTOM传输大数据

Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions Web Services Architecture Web Services Enhancements 3. 0 Security Management Reliability Business Process Transactions … 应用和 应用基础设施 Metadata Connected Applications 基础 … 传输层 Messaging XML HTTP TCP SMTP

Extend ASMX programming Model Example: ASMX Web Service over TCP public class Stock. Service Extend ASMX programming Model Example: ASMX Web Service over TCP public class Stock. Service System. Web. Services. Web. Service { [Web. Method] public Stock. Quote[] Stock. Quote. Request([string[] symbols) { } } static void Main(string[] args) { Uri to = new Uri( "soap. tcp: //Stock. Service/Stock. Quote"); Endpoint. Reference EPR = new Endpoint. Reference(to); Soap. Receivers. Add (EPR, typeof (Stock. Service)); }

Web Service via TCP Web Service via TCP

Web Services Architecture Indigo Web Services Security Management Reliability Business Process Transactions … Metadata Web Services Architecture Indigo Web Services Security Management Reliability Business Process Transactions … Metadata Connected Applications & Application Infrastructure Foundation Messaging XML HTTP TCP SMTP … Transports

天下归一 ASMX . NET Remoting 互操作性 跨平台 . NET 与. NET之间通 讯 分布式事务… 消息队列 天下归一 ASMX . NET Remoting 互操作性 跨平台 . NET 与. NET之间通 讯 分布式事务… 消息队列 对WS-*规范的支持 Enterprise Services System. Messaging WSE

Indigo中的统一编程模型 Indigo中的统一编程模型

通向Indigo Leveraging Existing Microsoft Investments Side-by-side coexistence with existing distributed technologies Seamless communication with 通向Indigo Leveraging Existing Microsoft Investments Side-by-side coexistence with existing distributed technologies Seamless communication with applications built on existing technologies Smooth upgrade of existing code to Indigo ASMX ES WSE 3

1. 如果开发分布式应用首选Web Service 2. 如果开发基本的Web Service, 使用 ASMX 3. 如果需要支持WS-*,使用WSE 3. 0 4. 开始关注Indigo 1. 如果开发分布式应用首选Web Service 2. 如果开发基本的Web Service, 使用 ASMX 3. 如果需要支持WS-*,使用WSE 3. 0 4. 开始关注Indigo

http: //msdn. microsoft. com/webservices http: //www. microsoft. com/china/msdn/ http: //msdn. microsoft. com/webservices http: //www. microsoft. com/china/msdn/

问题 1. 2. 3. 例举WSE 3. 0中支持的WS-*规范 例举SOA的四大特点 什么是MTOM 问题 1. 2. 3. 例举WSE 3. 0中支持的WS-*规范 例举SOA的四大特点 什么是MTOM