Press Release

OASIS Members Approve Nine Web Services Standards

IBM, Microsoft, Oracle, Sun Microsystems, Adobe, Axway, BMC, CA, Fujitsu, Hitachi, Intel, NEC, NeuStar, Nokia, Nortel, Novell, Progress Software, Red Hat, Ricoh, SAP, SOA Software, Software AG, TIBCO, VeriSign, US Veterans Health Administration and Others Advance Standards for Reliable Messaging, Transactions, and Secure Exchange

Boston, MA, USA; 5 February 2009 — OASIS, the international open standards consortium, today announced that its members have approved new versions of nine Web services specifications as OASIS Standards, a status that signifies the highest level of ratification. The WS Reliable Exchange (WS-RX), WS Transactions (WS-TX), and WS Secure Exchange (WS-SX) standards support reliable message exchange, coordinate the outcome of distributed application actions, and enable trusted relationships. These standards now include updated references to the latest versions of all cited specifications, enhancing their composability and stand alone use. Their approval marks a milestone in the maturity of Web services technology. “Working together, these standards provide a level of consistency across multiple services that is critical as customers move core business processes to SOA,” said Judith Hurwitz, president of Hurwitz & Associates. “WS-RX, WS-TX, and WS-SX standards offer developers a sophisticated switchboard of services to support the complex interactions required by today’s enterprise.” Three WS-RX standards—WS ReliableMessaging 1.2, WS ReliableMessaging Policy 1.2, and WS MakeConnection 1.1—allow messages to be transferred reliably despite failures in software components, systems, or networks. They enable a broad range of features, including ordered delivery, duplicate elimination, and guaranteed receipt. Three WS-TX standards—WS-Coordination 1.2, WS-AtomicTransaction 1.2, and WS-BusinessActivity 1.2—describe an extensible framework for coordinating transactions across a mixed vendor environment. Three WS-SX standards—WS-Trust 1.4, WS-SecureConversation 1.4, and WS-SecurityPolicy 1.3—provide methods for issuing security tokens, establishing trust relationships, and allowing key material to be exchanged more efficiently. “The WS-RX, WS-TX, and WS-SX standards were designed to be implemented individually or in combination with one another, so they can be tailored to meet specific SOA requirements,” said Laurent Liscia, executive director of OASIS. “These new versions of the specifications reference each other where appropriate to enable easy composability amongst themselves and other Web services standards.” All nine standards were developed under the Royalty-Free on RAND mode of the OASIS Intellectual Property Rights Policy. Participation in the WS-RX, WS-TX, and WS-SX Technical Committees remains open to all interested parties. Archives of the work are publicly accessible, and OASIS offers a mechanism for public comment. Support for WS OASIS Standards IBM “The approval of the Web services standards produced by the WS-RX, WS-TX and WS-SX Technical Committees represents a significant milestone with contributions from a broad coalition of companies. Our customers continue to look to the Web services architecture to provide robust, enterprise ready technology for their SOA deployments. Transactions, reliable messaging and security are critical capabilities. IBM addresses these requirements with support for these standards in products like WebSphere Application Server and Tivoli Federated Identity Manager and Security Policy Manager. The versions of the specifications being approved today add important support for the Web Services Policy specification from the W3C which enables applications to exchange information for requirements such as security provisions, transaction behaviors and reliable delivery of messages between endpoints,” said Karla Norsworthy, Vice President Software Standards, IBM. Microsoft “The standardization of these versions of the WS-SX, WS-RX and WS-TX specifications is a major step that finalizes the core Web services standards. By aligning references across these OASIS Standards and the W3C WS-Addressing and WS-Policy Recommendations, these standards encourage even more interoperable vendor implementations for Web services messaging, security, policy, reliability and transactions. The Web services standards offer mature support for critical customer enterprise scenarios, whether the protocols are used alone or in combination, thereby scaling from simple to complex scenarios,” said Paul Cotton, Partner Group Manager, Connected Systems Division, Microsoft. CA “The further evolution of Web services will depend heavily upon WS-SX, WS-RM and WS-TX. These standards use the WS-Security and WS-Policy frameworks as a foundation to define a set of protocols and extensions that help ensure trusted and reliable messages in a Web services-based system. They also define security and management policies that govern the formats and tokens of those messages. CA is a provider of various solutions that support SOA and strives to further facilitate the evolution of SOA interoperability and security,” said Milan Shah, vice president, Software Engineering, CA Security Management. Hitachi “Hitachi is pleased to see the maturation of these critical specifications and the normalization of these specifications to reference final materials developed by other organizations. By avoiding references to proprietary specifications Hitachi expects that adoption of these specifications will be strongly encouraged,” said Hideaki Sakaue, Executive General Manager, Hitachi, Ltd., Software Division. Nokia “Nokia is pleased to see the advancement of standards for Web Services, and in particular given the importance of security, the Secure Exchange standards,” said Frederick Hirsch, Senior Architect of Nokia. SAP “In continuing our support and commitment to the SOA and Web services standards, SAP co-chaired the OASIS WS-RX Technical Committee and stewarded the development of the WS-ReliableMessaging specifications. Approval of these and other Web services specifications as OASIS Standards not only represents the maturity of this technology, it also reinforces our customer’s confidence in using the Web services technology for enterprise services,” said Claus von Riegen, Director Technology Standards and Open Source, SAP AG. SOA Software “SOA Software is pleased to see the approval of these specifications as OASIS Standards. They will help ensure interoperability of security and reliability between vendors. These standards will allow us to more easily govern service platforms by managing the runtime policy engines of any vendor that implements and supports them,” said Alistair Farquharson, CTO at SOA Software. Additional information: OASIS Web Services Reliable Exchange (WS-RX) TC OASIS Web Services Transaction (WS-TX) TC OASIS WS-SX Technical Committee About OASIS: OASIS (Organization for the Advancement of Structured Information Standards) drives the development, convergence, and adoption of open standards for the global information society. A not-for-profit consortium, OASIS advances standards for SOA, security, Web services, documents, e-commerce, government and law, localisation, supply chains, XML processing, and other areas of need identified by its members. OASIS open standards offer the potential to lower cost, stimulate innovation, grow global markets, and protect the right of free choice of technology. The consortium has more than 5,000 participants representing over 600 organizations and individual members in 100 countries. Press contact: Carol Geyer OASIS Director of Communications +1.978.667.5115 x209 (office) +1.941.284.0403 (mobile)