sosie2

An open-source implementation of the Service Oriented Security Architecture concept. It is based on the open-source MULE ESB, can be adapted easily to any Enterprise Services Bus. The main idea behind the Service Oriented Security Architecture (SOSA) is that security functions such as authentication, authorization, audit, etc. are implemented externally to the service provider, and not embedded in this one or implemented at the message middleware layer. Furthermore, the different security functions are realized as independent services and designed according to the principle of separation of concerns. This leads to a collection of security services forming a security infrastructure: these services can be used to protect several service providers within a network. Enterprise Application Integration (EAI) techniques are used for combining the security services together and binding them to service providers through the definition of choreographies. Because of its service-oriente