{"id":1556,"date":"2009-12-06T01:18:24","date_gmt":"2009-12-06T06:18:24","guid":{"rendered":"http:\/\/www.coresecuritypatterns.com\/blogs\/?p=1556"},"modified":"2009-12-06T01:18:24","modified_gmt":"2009-12-06T06:18:24","slug":"does-your-performance-tests-address-security","status":"publish","type":"post","link":"https:\/\/websecuritypatterns.com\/blogs\/2009\/12\/06\/does-your-performance-tests-address-security\/","title":{"rendered":"Does your Performance Tests address Security ?"},"content":{"rendered":"<p>The untold reality is\u00a0&#8230;.when your Web application on the DMZ hits the Internet&#8230; the colorful\u00a0performance graphs\/numbers\u00a0does&#8217;nt mean anything !\u00a0\u00a0Unless\u00a0your performance guru in the lab captured the QoS requirements and realized it proactively and accounted its actual<span><em><strong><span><span> overheads associated with<\/span> <span><span>Security, Network bandwidth, High-availability and other mission-critical requirements<\/span><\/span><\/span><\/strong><\/em><\/span>.\u00a0 Otherwise&#8230;performance is the nagging issue that every datacenter guy gnaws&#8230;. when an application bloats up\u00a0with its cryptograhic shields such as SSL\u00a0 and WS-Security and then goes into production.\u00a0\u00a0 If you are one of them in the datacenter, who is\u00a0pulling the hair out on Security performance issues and compelled to meet the <strong>SLA including\u00a0IT Security and compliance<\/strong> requirements mandating the use of cryptography for securing the exposed\u00a0application layers\u00a0 &#8211; transport,\u00a0data and network &#8211; Then this <a href=\"http:\/\/websecuritypatterns.com\/blogs\/wp-content\/uploads\/2009\/12\/WeblogicT2-BP.pdf\">Sun solution blueprint <\/a>should help you for accelerating the <em><span>real-world performance<\/span><\/em> of Java EE based Web applications (especially Oracle Weblogic) delivering <strong><em>Security ground-up<\/em><\/strong> and all\u00a0WITHOUT\u00a0 your performance engineer help\u00a0\u00a0\u00a0\ud83d\ude42<\/p>\n<p><a href=\"http:\/\/websecuritypatterns.com\/blogs\/wp-content\/uploads\/2009\/12\/WeblogicT2-BP.pdf\" target=\"_blank\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1557\" src=\"http:\/\/www.coresecuritypatterns.com\/blogs\/wp-content\/uploads\/2009\/12\/accelerating-weblogicsecurity.png\" alt=\"\" width=\"600\" height=\"280\" \/><\/a><\/p>\n<p>No magic or surprises &#8211; The Sun CMT server features On-chip Cryptography and multi-threaded 10GbE networking out of the box &#8211; No kidding! If you are curious <strong><em>to know more or seize the power of your <\/em><\/strong> <strong><em>Sun CMT servers<\/em><\/strong> for security, take a look at  the blueprint and also take a look at my previous post highlighting our  presentation at Oracle Open World &#8211;\u00a0 <a href=\"..\/?p=1069\" target=\"_blank\">Wire-speed Cryptographic Acceleration for SOA and Java EE Security<\/a>.<strong><em><\/em><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The untold reality is\u00a0&#8230;.when your Web application on the DMZ hits the Internet&#8230; the colorful\u00a0performance graphs\/numbers\u00a0does&#8217;nt mean anything !\u00a0\u00a0Unless\u00a0your performance guru in the lab captured the QoS requirements and realized it proactively and accounted its actual overheads associated with Security, Network bandwidth, High-availability and other mission-critical requirements.\u00a0 Otherwise&#8230;performance is the nagging issue that every datacenter guy gnaws&#8230;. when an application&#8230; <a href=\"https:\/\/websecuritypatterns.com\/blogs\/2009\/12\/06\/does-your-performance-tests-address-security\/\">Read more &raquo;<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,20,21,8,9],"tags":[28,37,39,57,62,75],"class_list":["post-1556","post","type-post","status-publish","format-standard","hentry","category-compliance","category-java-ee","category-java-security","category-pki-main","category-security","tag-compliance-main","tag-j2ee","tag-java","tag-pki-main","tag-security","tag-ws-security"],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/1556","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/comments?post=1556"}],"version-history":[{"count":0,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/1556\/revisions"}],"wp:attachment":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/media?parent=1556"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/categories?post=1556"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/tags?post=1556"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}