Header Image

Sarbanes-Oxley in SOA

Build identity/access infrastructure to control and validate machine-to-machine interactions

Build identity/access infrastructure to control and validate machine-to-machine interactions

 

Service-Oriented Architecture (SOA) is transforming business integration. Business processes no longer just involve humans accessing machines. Technologies like XML and Web services are making machine-to-machine interactions commonplace where business processes stretch across many cooperating and coordinated computers.

The financial controls and reporting required by the Sarbanes-Oxley Act of 2002 force companies to rethink how they govern their IT processes. In particular, section 404 requires every publicly registered company to demonstrate the effectiveness of its internal control structures and reporting procedures.

This requires identity and access infrastructure that can both control and validate not only user-machine interactions but also SOA-based machine-machine interactions. This White Paper explains how to build an identity and access management infrastructure that makes it possible to ensure Sarbanes-Oxley compliance in SOA.