VP Innovation at Axway, Co-founder at Vordel

Mark O'Neill

Subscribe to Mark O'Neill: eMailAlertsEmail Alerts
Get Mark O'Neill: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Latest Articles from Mark O'Neill
When organizations make the choice to put a digital platform in place, a discussion on MicroServices is never far behind. By putting a MicroServices layer in place, an organization creates the springboard to launch into the digital future, whether that involves apps, rich Web clients, ...
One of the most exciting parts of this week's Apple Watch launch was the example of the BMW watch app. This app allows you to see the charging status of your BMWi electric car, right from your wrist. You can also check the status of the doors of your car (important information such as ...
Of course, I work for an API security/management vendor (Axway), so you might think "he would say that". But, having an API Management strategy in place means that API Keys are protected at Runtime by an API Gateway, and issued at Design Time by an API Portal. What all of the recent AP...
Of all the reaction to the latest Snapchat API security issue, the most striking
The Internet of Things (IoT) is giving rise to a whole new set of protocols for API access. Until recently, it was taken for granted that JSON is all-conquering and predominant. In my view, the popularly of JSON for APIs is as much to do with the widespread usage of dynamic languages o...
Until recently, API clients were assumed to usually be mobile devices. In fact, if you see a diagram on a Powerpoint slide of an API being called, it is usually a mobile app which is doing the calling. Now, we're moving on to the "Internet of Things" (IoT). IoT raises interesting requi...
Until recently, when I would talk about "APIs", I would qualify it by saying "Web APIs", in order to distinguish from the older meaning of APIs as more the tightly-coupled APIs used in Java, C/C++, or even Visual Basic. If you just said "APIs", until recently, some people may think you...
There has been a rush lately of retailers exposing APIs to enable mobile access to what previously were in-store operations. Last month, Adam Broitman wrote in Advertising Age about Walgreen's photo API. In the article he notes that APIs may become crucial to brick and mortar stores.
Niall Commiskey has written a really useful guide to measuring the time a Gateway takes to call a Web Service. I recommend you check it out if you're interested in
Let's say you've created a SOAP message in the Vordel Gateway, perhaps based on an incoming REST request. And now you want to send this SOAP request to a Web Service. Here is how to do this:First add a 'Set HTTP Verb' filter to the end
It's simple to setup the validation of a signed SAML 2.0 assertion in a Vordel XML Gateway. In a circuit, chain together (1) an "XML Signature Verification" filter (which you can find in the
Amazon EC2 VPC is outta beta:http://aws.typepad.com/aws/2009/12/amazon-virtual-private-cloud-opens-up.html
The ENISA (European Network and Information Security Agency) today released the Cloud Computing Risk Assessment document. The document does well by including a focus on SMEs (Small and Medium sized Enterprises) because, as the report says, "Given the reduced cost and flexibility it ...
Techcrunch reports that Google has some implicit suggestions about newspapers, based on the drop-down suggestions it gives when you begin a search with "Newspapers are." It's a nice example of the hive mind at work. But check out the first suggestion Google gives you if you type "Cloud...
Today, Alexander Wolfe has been speculating about Microsoft's patent application regarding data migration between cloud services. Although on the face of it, a patent for Cloud migration would appear to be aimed at removing the lock-in associated with a single vendor, the patent applic...
A full schedule today at VordelWorld with talks by Amazon, CA, Oracle, and others - not to mention Vordel product training.
Oracle's Vikas Jain (author of the ws-security blog) is speaking at VordelWorld on how the Vordel XML Gateway operates in the Oracle Fusion Middleware services infrastructure. He is speaking at 11.45 on
I think language is a big issue here. I've always found it interesting that in German, the words for "security" and "certainty" (sicherheit, literally "sureness") are the same. In French, the words for "safety" and "security" are also the same (sûreté, again literally "sureness"). So, ...
So here’s the rub, if MSSP’s/ISP’s/ASP’s-cum-Cloud operators want to woo mature enterprise customers to use their services, they are leaving money on the table and not fulfilling customer needs by failing to roll out complimentary security capabilities which lessen the compliance and s...
There is a great line-up taking shape for the VordelWorld conference in November. Check out the latest conference news below:---Vordel
After you've validated a UsernameToken, or checked an XML Signature, it is often good practice to then strip out the WS-Security blocks containing items like tokens and signatures, before sending them downstream to a Web Service. In some cases, you are stripping these out because you d...
How can security policies be centralized across an enterprise's set of Web applications? In particular, we examine the case of security policies for web services and for traditional websites and describe how the two can be administered and enforced together to improve both the cost of ...
Virtualization is a buzzword that is living up to its hype as it takes hold in IT. It has spawned magazine covers, conferences, and analyst reports, and all with good reason. Virtualization allows applications to be deployed in a highly efficient manner. By taking the physical servers ...
It's well known that Web services need security. It's also a truism that lack of security is the barrier to the adoption of Web services. Let's dig a little deeper: What is it about Web services that provoke the security concerns? What is being done to answer the challenge? By answerin...
Last month we focused on the need for compression when XML is transmitted over a wireless network (XML-J, Vol. 3, issue 3). We also looked at the use of XSLT to tailor a single XML document for display on multiple wireless devices, each of which might have different display capabilitie...
The actual definition of a Web service is a matter of some debate because the world of Web services can extend from small closed networks to global discovery services implemented using UDDI (Universal Description, Discovery, and Integration). But at a practical implementation level it ...
Wireless transmission is becoming more and more common for many document types, and XML is no exception. But XML itself presents a number of challenges to the wireless medium. This article, the first in a two-part series, describes these challenges, and describes techniques that can be...
As XML becomes the de facto format for businesses to communicate over the Internet, the need for security comes to the fore. Digital security has always been about the compromise between convenience and peace of mind. This holds true for XML also.