Oasis approves two web service specs

Oasis moved forward on two fronts in web services standardisation this week, ratifying a proposal for gauging security...

Oasis moved forward on two fronts in web services standardisation this week, ratifying a proposal for gauging security vulnerabilities and forming a panel to advance a standard for the building management industry.

Members approved Application Vulnerability Description Language (AVDL) Version 1.0 as an official Oasis Standard. AVDL provides a method for exchanging information about security vulnerabilities within web services and web applications.

AVDL saves network managers from having to manually compare reports from application vulnerability assessments with application firewall rules, patch management systems, and other information from event correlation systems.

Vulnerability assessments instead can be imported from AVDL-compliant application scanners. The technology already is being implemented at organisations such as United States Department of Energy and the National Nuclear Security Administration.

Oasis also unveiled plans to advance oBIX (Open Building Information Xchange), with the formation of an oBIX Technical Committee to define a standard method to enable mechanical and electrical systems in facilities to communicate with enterprise applications.

The oBIX technology would be applicable to systems such as heating, venting, and air conditioning; elevators; laboratory equipment; life/safety systems; and closed circuit television monitoring. Web services would be used to enhance the effectiveness of building control systems. 

The proposal represents a growing trend of vertical industries developing standards within Oasis to use web services for specific industry needs.

Paul Krill writes for Infoworld



Enjoy the benefits of CW+ membership, learn more and join.

Read more on Operating systems software



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:




  • Dissecting the Hack

    In this excerpt from chapter three of Dissecting the Hack: The V3RB0TEN Network, authors Jayson E. Street, Kristin Sims and Brian...

  • Digital Identity Management

    In this excerpt of Digital Identity Management, authors Maryline Laurent and Samia Bousefrane discuss principles of biometrics ...

  • Becoming a Global Chief Security Executive Officer

    In this excerpt of Becoming a Global Chief Security Executive Officer: A How to Guide for Next Generation Security Leaders, ...