« Thanks for the Memories Boomers | Main | Something to think about when designing access control systems »

Comments

Jim Manico

I know REST does not work for very complex user-submitted transactions, but I still do not like the idea of any anonymous user ever hitting a servers xml parsing engine. The are fragile. And if you must do SOAP, at least consider doing it in a B2B situation only where you have deployed certs to all clients to at least give you non repudiation after someone uses soap to trash your server by mounting an attack in your XML parsing engine.

The comments to this entry are closed.