WSO2 Summer School Features Free Class on SOA Security Policy Enforcement for the Enterprise

Webinar-Based Training on June 1, 2011 Explores How XACML Enforces Role-Based Access Control and Can be Used to Define Fine-Grained Authorization Policies

Mountain View, CA – May 24, 2011 The recent data breaches faced by Sony, Epsilon and TJX once again highlight the risks that lapses in governance pose to enterprise data security. To protect valuable company and customer data, enterprises need to implement IT security governance as a mechanism for managing authorization and access via pre-defined rules and policies. Industry-standard technologies, such as the eXtensible Access Control Markup Language (XAMCL), are helping to facilitate this governance by enabling more efficient and nuanced security policy enforcement.

IT architects and developers can learn about security governance best practices and enabling technologies by attending the interactive online class, “Security Policy Enforcement for the Enterprise.” The two-hour session is being offered at no cost as a part of the WSO2 SOA Summer School program. It will be held on Wednesday, June 1, 2011 at 9:00 a.m. Pacific. To participate, register at:

The Security Policy Enforcement class will begin by reviewing core concepts around governance, security policy, how security policy is enforced, and the challenges presented by business-to-business transactions. The session will then examine how XACML acts as a medium to enforce role-based access control, how it can be used for defining fine-grained authorization policies, and how XACML can applied to both SOAP-based Web services and RESTful services. Additionally, attendees will learn how to use XACML based on Security Assertion Markup Language (SAML) assertions, as well as how to restrict service calls by enforcing role access.

Leading the class are Dimuthu Leelarathne, WSO2 technical lead and product manager of WSO2 Stratos, and Amila Jayasekara, WSO2 technical lead. In addition to their track record in product innovation, Dimuthu and Amila both bring proven expertise in helping WSO2 enterprise customers to successfully implement security policies within their SOAs.

SOA Summer School

Since 2009, the popular WSO2 SOA Summer School program has helped more than 2,000 enterprise IT architects and developers become more familiar with service-oriented architecture (SOA) technologies and best practices. The all-new classes for 2011 are open to all individuals who want to learn proven techniques for addressing enterprises’ top IT challenges. Taught by some of the industry’s leading technical experts, the classes offer an opportunity to obtain thousands of dollars worth of professional training at zero cost. For details on the program and how to sign up, visit

About WSO2

WSO2 is the lean enterprise middleware company. It delivers the only complete open source enterprise SOA middleware stack purpose-built as an integrated platform to support today’s heterogeneous enterprise environments—internally and in the cloud. WSO2’s service and support team is led by technical experts who have proven success in deploying enterprise SOAs and contribute to the technology standards that enable them. For more information,visit and the WSO2 OxygenTank developer portal at, or check out WSO2 on Twitter, LinkedIn, Facebook, WSO2 Blogsand FriendFeed.

All trademarks and registered trademarks are the properties of their respective owners.