webMethods, HP, and Layer 7 said they have successfully tested the interoperability of the WS-Policy web services standard between two UDDI service registries and an XML security appliance.
This means that you could communicate a policy preference, such as who is entitled to access a specific web service, from one registry to the next, and have it understood by a security appliance that acts as an external gateway.
The standards involved, both developed through the W3C, specify the syntax for how policies dictating security, service level contracts, and other requirements concerning access to a web service are expressed in a registry. In this test, the HP Systinet and the webMethods xRegistry UDDI registries were used to demonstrate interoperability with the Layer 7 SecureSpan XML gateway appliance.
The significance is that one of the assumptions of SOA is that the world is highly heterogeneous and federated. That is, there won’t be a single source of the truth, especially in large organizations with multiple business units, or serving several world geographies. Furthermore, as more enterprises embrace virtual business models, where they partner with other companies to provide a product or deliver a service, is highly unlikely that they will all use the same vendor’s UDDI registry.
This test demonstrated that WS-Policy 1.5, which specifies the syntax for declaring how policy is represented inside the header of a UDDI listing, and WS-PolicyAttachment 1.5, which specifies the handling of policy data in attached binary files, can be exchanged between multiple registries and gateways.
We tested 40 use cases to demonstrated interoperability, said Miko Matsumura, vice president of technology and standards for webMethods. It shows that there is real effort being made towards proving interoperability.