Two Sets of ‘Composable’ Web Services Specs to be Tested

By By Alan J. Weissberger, Contributing Author

April 11, 2005

I. Introduction

For Grid applications, Web services messages must be reliably and securely delivered. Various Web services standards and specifications have been developed for this purpose. In particular, the WS-Reliability and WS-Security standards from OASIS will be used in the Japanese Business Grid Project. Various Web services and Grid middleware vendors are likely to include WS Reliable Messaging, WS Policy, WS Security, WS Trust and WS Secure Conversation in their commercial product offerings (to be announced).

Two different sets of specifications which address the required functionality for Web services reliability and security will soon be tested for interoperability:

A. BEA Systems, IBM, Microsoft and TIBCO Software, co-developers of the WS-Reliable Messaging specification, are hosting a two-day Composability Interop Workshop on April 13-14 at Microsoft's Silicon Valley Campus in Mountain View, Calif. The two-day interop workshop is an ad-hoc, open forum for companies who have WS-Reliable Messaging (WS-RM) and WS-Secure Conversation1 implementations, and who want to test their implementations with other companies' implementations. Attendees bring their own laptops, implementations and any other tools they feel would be needed; testing among all attendees will occur throughout the day. As with previous WS-* workshops, these events are open to anyone who desires to participate and who can bring an implementation based on the specifications listed above. This is the third WS-RM interop event sponsored by the co-authors of that spec.

The invitation to participate (for those that have implementations of these specs) can be downloaded from the IBM and Microsoft Web sites:

The workshop process, which includes description of two types of events — Feedback Workshops and Interoperability Workshops — may be downloaded from two sites:

A revised test scenario document for use in this Interop Workshop was recently made available to the interop participants who joined the “WS-RM-Workshops” Yahoo! e-mail group. The updates included: Ordering elements inside Security header; Signature Confirmation; and Encrypted Signatures for all messages (including the WS-RM infrastructure messages).

Note that participating companies may bring pre-release code to the workshops, so their results at interop testing time may not necessarily bear any relation to the code they eventually ship to market.


Footnote:

1. Web Services Secure Conversation Language (WS-SecureConversation):

This specification defines extensions that build on [WS-Security] and [WS-Trust] to provide secure communication across one or more messages. Specifically, this specification defines mechanisms for establishing and sharing security contexts, and deriving keys from established security contexts (or any shared secret).


B. The OASIS WSRM TC has just approved an interoperability event, to be hosted in early June by Fujitsu Software (Sunnyvale, Calif.), that will test “composable” implementations of the WS-Reliability (WS-R) and WS-Security standards. This is a follow on to the TCs effort to generate a Composability Concepts document and a more detailed WS-Reliabilty and WS-Security Composability Case Studies document (implementation specific examples of how to compose WS-R with WS-Security). Please refer to the article “Making Web Services Message Exchanges Reliable, Secure” in the Jan. 24 edition of GRIDtoday: news.taborcommunications.com/msgget.jsp?mid=328880&xsl=story.xsl.

The WSRM TC will develop test cases/ test assertions (no more than 12 for this event — see description below) which will be used as the basis for the implementations to be tested for interoperability. This (WS-R/WS-Security) Composability interop event will be very valuable in providing feedback, which will be used to augment and improve the previously referenced Composability Case Studies document. NEC and Fujitu have committed to providing implementations for this interop event. Additional participants are encouraged to join.

Upon successful interop event testing, participants may provide an Internet end point to facilitate more extensive interoperability testing of the composed specs. At that time, additional test assertions may be included.

II. Definition of Composability (in the context of Web services)

IBM, Microsoft, and their WS-* partners have coined the term “composability” to denote the proper combination of various Web service specifications. The term has been accepted throughout the industry and now also applies to emerging Web services standards (e.g., WS-Reliability and WS-Security) which may be combined to cooperatively work with each other.

In particular, the term “Composability” is used to describe independent standards or specifications that can be combined to provide more powerful capabilities. WS middleware providers can support composed capabilities by integrating two (or more) WS standards in a specified way in the same or different SOAP header processing nodes (e.g., providers can integrate WS Reliability support for communicating WS Security message exchanges, or vice versa). The purpose of composability is to combine two independent WS standards or specifications to realize the desired functionality that each provides in a single set of WS message exchanges.

III. Methodology to be Used for OASIS WSRM TC Interoperability Event

The WS-R implementations may be based on those developed for previous interop demos, new implementations based on the WS-R standard, or on the open source RM4GS (which runs under Linux OS). The WS-Security implementations may be based on vendor developed implementations, new implementations for this demo, or open source versions of the standard.

Both Fujitsu and NEC will have implementations for this interop and other companies are encouraged to participate as well. The test scripts/test assertions will be compliant with both the WS-Security standard and the corresponding WS-I Basic Security Profile (BSP) working drafts (please refer to the WS-I March 2005 meeting report in the March 21 edition of GRIDtoday: news.taborcommunications.com/msgget.jsp?mid=352675&xsl=story.xsl.

The interoperability test assertions will be based on four security requirements:

  • Authentication.
  • Non-repudiation (a type of authorization).
  • Confidentiality (encryption).
  • Integrity (tamper proofing).

For each of these four requirements, security features compliant with WS-Security and WS-I BSP have been selected in order to generate a small set of test assertions. No more than 12 test assertions will be verified during this interop testing round. However, additional test assertions may be specified for future testing.

The derived test cases will be grouped into a test suite that will distinguish two roles: 1) client and 2) service. In order to verify the ability of two composable WS-R/WS-Security implementations to interoperate, the test suite will be executed twice — with the implementations swapping roles — so that each role is properly tested. Besides security artifacts (certificates, keys, etc.) no specific configuration or policy will be required by the receiver of secure and reliable messages to participate in these test cases. In other words, we allow for different WS-R/WS-Security ordered processing configurations on the sender side, while specifying only the composed message format transmitted (we assume over HTTP transport) on the wire. The transmitted message format will implicitly specify the test case for receiver processing.

The composition of the reliability and security functions implied by these test cases will be implemented in a SOAP architecture and processing order that will not vary from one test case to the other. Each Web services end-point may be composed of WS reliability and security modules that may have been developed independently of each other.

Here are a few of the parameters that the test cases will modulate or simply determine:

  • The sections of the SOAP message which are signed.
  • The type of digital signature (detached or enveloped).
  • The parts of the SOAP message which are encrypted (message body vs. headers).
  • Type of encryption algorithm and key management method.
  • Requirements for the integrity of the WS-R header, payload or both?
  • The token type(s) to be used for authentication — X.509, REL, SAML, user name/password.

The sample application to drive the client side interop testing will likely be the Purchase Order processing application, which had previously been used for successful interop testing of WS-R implementations. This will be the fourth WS-R interop event sponsored by the WSRM TC.

Acknowledgements: The author would like to thank Jacques Durand and Hamid Malek of Fujitsu Software-USA for their work in developing the WS-R/WS-Security interop test methodology described above and their extremely valuable contributions to this article. Thanks also to Jorgen Thelin of Microsoft and Doug Davis of IBM for furnishing the links to obtain more information on their respective interop workshops.

About Alan J. Weissberger

Alan J. Weissberger is actively seeking clients in need of his expertise in the telecommunications field. If you would like to speak personally with Alan about how he could help your company, feel free to contact him via e-mail at [email protected] or [email protected]. To learn more about his extensive qualifications, read his annotated biography below.

As the founder and Technical Director of Data Communications Technology (DCT), a technical consulting firm started in March 1983, Alan J. Weissberger specializes in telecommunications standards and their implementation. His clients have included network providers (AT&T, NTT, Pacific Bell, US West, Entel and CTC in Chile, Telkom South Africa, Moroccan PTT, others), equipment and semiconductor manufacturers, and large end users. In 1995 and 1996 Alan was the principal architect for the European Commission's multi-service, multi-country ATM network — the largest private network in Europe (that network has now evolved into Gig Ethernet over CWDM). In 2000-01, he was Ciena's lead ITU-T delegate, contributing to the standardization of the optical control plane in SG13 and SG15. Alan now represents NEC Corp in several OASIS TCs dealing with Web Services, while also attending the Global Grid Forum and the Optical Internetworking Forum (OIF).

To read his entire biography, please visit www.gridtoday.com/04/1011/bio.html.

Subscribe to HPCwire's Weekly Update!

Be the most informed person in the room! Stay ahead of the tech trends with industry updates delivered to you every week!

MLPerf Inference 4.0 Results Showcase GenAI; Nvidia Still Dominates

March 28, 2024

There were no startling surprises in the latest MLPerf Inference benchmark (4.0) results released yesterday. Two new workloads — Llama 2 and Stable Diffusion XL — were added to the benchmark suite as MLPerf continues Read more…

Q&A with Nvidia’s Chief of DGX Systems on the DGX-GB200 Rack-scale System

March 27, 2024

Pictures of Nvidia's new flagship mega-server, the DGX GB200, on the GTC show floor got favorable reactions on social media for the sheer amount of computing power it brings to artificial intelligence.  Nvidia's DGX Read more…

Call for Participation in Workshop on Potential NSF CISE Quantum Initiative

March 26, 2024

Editor’s Note: Next month there will be a workshop to discuss what a quantum initiative led by NSF’s Computer, Information Science and Engineering (CISE) directorate could entail. The details are posted below in a Ca Read more…

Waseda U. Researchers Reports New Quantum Algorithm for Speeding Optimization

March 25, 2024

Optimization problems cover a wide range of applications and are often cited as good candidates for quantum computing. However, the execution time for constrained combinatorial optimization applications on quantum device Read more…

NVLink: Faster Interconnects and Switches to Help Relieve Data Bottlenecks

March 25, 2024

Nvidia’s new Blackwell architecture may have stolen the show this week at the GPU Technology Conference in San Jose, California. But an emerging bottleneck at the network layer threatens to make bigger and brawnier pro Read more…

Who is David Blackwell?

March 22, 2024

During GTC24, co-founder and president of NVIDIA Jensen Huang unveiled the Blackwell GPU. This GPU itself is heavily optimized for AI work, boasting 192GB of HBM3E memory as well as the the ability to train 1 trillion pa Read more…

MLPerf Inference 4.0 Results Showcase GenAI; Nvidia Still Dominates

March 28, 2024

There were no startling surprises in the latest MLPerf Inference benchmark (4.0) results released yesterday. Two new workloads — Llama 2 and Stable Diffusion Read more…

Q&A with Nvidia’s Chief of DGX Systems on the DGX-GB200 Rack-scale System

March 27, 2024

Pictures of Nvidia's new flagship mega-server, the DGX GB200, on the GTC show floor got favorable reactions on social media for the sheer amount of computing po Read more…

NVLink: Faster Interconnects and Switches to Help Relieve Data Bottlenecks

March 25, 2024

Nvidia’s new Blackwell architecture may have stolen the show this week at the GPU Technology Conference in San Jose, California. But an emerging bottleneck at Read more…

Who is David Blackwell?

March 22, 2024

During GTC24, co-founder and president of NVIDIA Jensen Huang unveiled the Blackwell GPU. This GPU itself is heavily optimized for AI work, boasting 192GB of HB Read more…

Nvidia Looks to Accelerate GenAI Adoption with NIM

March 19, 2024

Today at the GPU Technology Conference, Nvidia launched a new offering aimed at helping customers quickly deploy their generative AI applications in a secure, s Read more…

The Generative AI Future Is Now, Nvidia’s Huang Says

March 19, 2024

We are in the early days of a transformative shift in how business gets done thanks to the advent of generative AI, according to Nvidia CEO and cofounder Jensen Read more…

Nvidia’s New Blackwell GPU Can Train AI Models with Trillions of Parameters

March 18, 2024

Nvidia's latest and fastest GPU, codenamed Blackwell, is here and will underpin the company's AI plans this year. The chip offers performance improvements from Read more…

Nvidia Showcases Quantum Cloud, Expanding Quantum Portfolio at GTC24

March 18, 2024

Nvidia’s barrage of quantum news at GTC24 this week includes new products, signature collaborations, and a new Nvidia Quantum Cloud for quantum developers. Wh Read more…

Alibaba Shuts Down its Quantum Computing Effort

November 30, 2023

In case you missed it, China’s e-commerce giant Alibaba has shut down its quantum computing research effort. It’s not entirely clear what drove the change. Read more…

Nvidia H100: Are 550,000 GPUs Enough for This Year?

August 17, 2023

The GPU Squeeze continues to place a premium on Nvidia H100 GPUs. In a recent Financial Times article, Nvidia reports that it expects to ship 550,000 of its lat Read more…

Shutterstock 1285747942

AMD’s Horsepower-packed MI300X GPU Beats Nvidia’s Upcoming H200

December 7, 2023

AMD and Nvidia are locked in an AI performance battle – much like the gaming GPU performance clash the companies have waged for decades. AMD has claimed it Read more…

DoD Takes a Long View of Quantum Computing

December 19, 2023

Given the large sums tied to expensive weapon systems – think $100-million-plus per F-35 fighter – it’s easy to forget the U.S. Department of Defense is a Read more…

Synopsys Eats Ansys: Does HPC Get Indigestion?

February 8, 2024

Recently, it was announced that Synopsys is buying HPC tool developer Ansys. Started in Pittsburgh, Pa., in 1970 as Swanson Analysis Systems, Inc. (SASI) by John Swanson (and eventually renamed), Ansys serves the CAE (Computer Aided Engineering)/multiphysics engineering simulation market. Read more…

Choosing the Right GPU for LLM Inference and Training

December 11, 2023

Accelerating the training and inference processes of deep learning models is crucial for unleashing their true potential and NVIDIA GPUs have emerged as a game- Read more…

Intel’s Server and PC Chip Development Will Blur After 2025

January 15, 2024

Intel's dealing with much more than chip rivals breathing down its neck; it is simultaneously integrating a bevy of new technologies such as chiplets, artificia Read more…

Baidu Exits Quantum, Closely Following Alibaba’s Earlier Move

January 5, 2024

Reuters reported this week that Baidu, China’s giant e-commerce and services provider, is exiting the quantum computing development arena. Reuters reported � Read more…

Leading Solution Providers

Contributors

Comparing NVIDIA A100 and NVIDIA L40S: Which GPU is Ideal for AI and Graphics-Intensive Workloads?

October 30, 2023

With long lead times for the NVIDIA H100 and A100 GPUs, many organizations are looking at the new NVIDIA L40S GPU, which it’s a new GPU optimized for AI and g Read more…

Shutterstock 1179408610

Google Addresses the Mysteries of Its Hypercomputer 

December 28, 2023

When Google launched its Hypercomputer earlier this month (December 2023), the first reaction was, "Say what?" It turns out that the Hypercomputer is Google's t Read more…

AMD MI3000A

How AMD May Get Across the CUDA Moat

October 5, 2023

When discussing GenAI, the term "GPU" almost always enters the conversation and the topic often moves toward performance and access. Interestingly, the word "GPU" is assumed to mean "Nvidia" products. (As an aside, the popular Nvidia hardware used in GenAI are not technically... Read more…

Shutterstock 1606064203

Meta’s Zuckerberg Puts Its AI Future in the Hands of 600,000 GPUs

January 25, 2024

In under two minutes, Meta's CEO, Mark Zuckerberg, laid out the company's AI plans, which included a plan to build an artificial intelligence system with the eq Read more…

Google Introduces ‘Hypercomputer’ to Its AI Infrastructure

December 11, 2023

Google ran out of monikers to describe its new AI system released on December 7. Supercomputer perhaps wasn't an apt description, so it settled on Hypercomputer Read more…

China Is All In on a RISC-V Future

January 8, 2024

The state of RISC-V in China was discussed in a recent report released by the Jamestown Foundation, a Washington, D.C.-based think tank. The report, entitled "E Read more…

Intel Won’t Have a Xeon Max Chip with New Emerald Rapids CPU

December 14, 2023

As expected, Intel officially announced its 5th generation Xeon server chips codenamed Emerald Rapids at an event in New York City, where the focus was really o Read more…

IBM Quantum Summit: Two New QPUs, Upgraded Qiskit, 10-year Roadmap and More

December 4, 2023

IBM kicks off its annual Quantum Summit today and will announce a broad range of advances including its much-anticipated 1121-qubit Condor QPU, a smaller 133-qu Read more…

  • arrow
  • Click Here for More Headlines
  • arrow
HPCwire