Standards for Technology in Automotive Retail

 
 Home -  News Feed 
Transport Guidelines
   Next

Transport Guidelines

2010v1

Jason Loeffler, Karmak

Michelle Vidanes, STAR

Pejavar Rao, Navistar

Andy Selletta, ADP

Hector Rivas, PACCAR

Copyright © 2010 Standards for Technology in Automotive Retail

Table of Contents

Part I. Executive Summary
1. Background
1.1. STAR Organization
1.2. Scope
1.3. The Difference Between Guidelines, Standards and Recommendations
1.4. Overall Requirements
1.5. Message Based Routing
2. Executive Summaries
2.1. Overview
2.2. Message Handling
2.3. Security
2.4. Management and Functionality
Part II. Requirements
3. Transport Methods
3.1. Recommended Transport Methods
3.1.1. STAR ebMS Stack
3.1.2. STAR Webservices Stack
4. Reliable Message Delivery
4.1. Overview
4.2. Requirements
4.2.1. Delivery Assurance Profiles
4.2.2. Delivery Assurance Features
4.2.3. Intermediaries
4.2.4. Intermediary Authentication and Authorization
4.2.5. Standardized Error Handling and Monitoring
4.3. Discussions
4.3.1. Message Sequencing
4.3.2. Per Message or Per Sequence
4.3.3. WS-Policy Framework
4.4. Decisions
4.4.1. Intermediary Issues
4.4.2. Routing Intermediaries
5. Collaboration
5.1. Requirements
5.1.1. Large Message Handling
5.1.2. Bi-Directional Messaging
5.1.3. Delayed Response
5.1.4. Immediate Response
5.1.5. Message Ordering
5.1.6. Pull Message
5.2. Discussions
5.2.1. Very Large Messages
5.2.2. Immediate Response
5.2.3. Long Running Conversations and Supporting Conversational State
5.2.4. Push Messaging
5.2.5. Lite Clients; Mobile and PDA
5.2.6. Long Running Conversations and Business Process Management
5.3. Best Practices
5.3.1. Long Running Conversations and Business Process Management
5.4. Decisions
5.4.1. Large Message Handling
5.4.2. Bi-Directional Messaging
5.4.3. Delayed Response
5.4.4. Immediate Response
5.4.5. Message Ordering
5.4.6. Pull Message
6. Performance
6.1. Background
6.2. Requirements
6.2.1. Benefits of Compression
6.2.2. Issues with Compression
6.3. Discussions
6.3.1. Payload Compressions
6.3.2. gzip Compression
6.3.3. Using Payload Compression
6.3.4. Issues with Payload Compression
6.3.5. Payload Content
6.3.6. HTTP Compression
6.3.7. Issues with HTTP Protocol Compression
6.3.8. Decisions
7. Auditing
7.1. Requirements
7.1.1. Non-Repudiation
7.1.2. Security
7.1.3. Logging
7.1.4. Timestamps
7.2. Discussions
7.2.1. Trusted Timestamp Services
7.2.2. Timestamp Format
7.2.3. Key Data Fields
7.2.4. Associating Messages with Business Transactions
7.2.5. Message IDs through Intermediaries
7.3. Best Practices
7.3.1. Associate Transport MessageIDs with Business Transactions
7.3.2. Saving Messages for Non-Repudiation
7.4. Decisions
7.4.1. Message Logging
7.4.2. Timestamp Format
7.4.3. MessageID Format
7.4.4. Key Data Fields
Part III. Security
8. Security
8.1. Business Messaging Security
8.2. Requirements
8.3. STAR Security Issues: Scope
8.4. Message-Level Security Versus Infrastructure Security
9. Infrastructure Level Security
9.1. Requirements
9.2. Discussions
9.2.1. SSL over HTTP
9.2.2. Virtual Private Network
9.2.3. Decisions
10. Message Level Security
10.1. Requirements
10.1.1. Applying STAR Transport Requirements to Message-Level Security
10.1.2. Using Digital Certificates for Identification and Authentication
10.1.3. Using Username/Password for Identification and Authentication
10.1.4. Message-Level Source, Target and System Authentication
10.2. Discussions: ebMS Message-Level Security
10.2.1. Digtally Signing a STAR ebMS Message
10.2.2. STAR ebMS Message-Level Encryption
10.3. Discussions: Web Services Message-Level Security
10.3.1. Web Services Authentication Options
10.3.2. Digital Signature
10.3.3. Username/Password Hash
10.3.4. Username/Password Clear-text over HTTPS
10.3.5. Binary Token Shared Secret
10.3.6. Security Assertion Markup Language (SAML)
10.3.7. Web Services Message-Level Privacy with Data Encryption
10.4. Discussions: Digital Certificate Format
10.5. Decisions
Part IV. Compliance and Testing
11. Internet Connectivity
11.1. Background
11.2. Requirements
11.2.1. Message Handshaking and Feature Set
11.2.2. Flexibility of Implementation Cost and Footprint
11.2.3. The Ability to Support Open Standards Based Messaging Solutions
11.2.4. Internet Connectivity Types
11.3. Internet Connectivity Implementation Patterns
11.3.1. Addressable Hub
11.3.2. Addressable Endpoint
11.3.3. Non-Addressable Endpoint
11.4. Discussions
11.4.1. Endpoint Addressing
11.5. Decisions
12. Management
12.1. Background
12.2. Requirements
12.2.1. Administration
12.2.2. Monitoring and Diagnostics
12.2.3. Synchronized System Time and Consistent Timestamps
12.2.4. Message Logging
12.2.5. Message Status
12.3. Discussions
12.3.1. Security Token Management
12.3.2. ebMS Ping/Pong
12.3.3. Network Time Protocol (NTP)
12.3.4. Message Logging
12.4. Decisions
12.4.1. General
12.4.2. ebMS v2.0
12.4.3. Web Services Management
12.4.4. Logging
13. STAR Transport Testing
13.1. Overview
13.2. STAR Conformance
13.3. STAR Testing Approach
13.3.1. STAR Checklists
13.4. How to Use the STAR Checklists
13.5. STAR Transport Guidelines - Testing Checklist
A. Resources / References
B. Technical Summary
C. Ranking Summary

List of Figures

1.1. System Migration
3.1. STAR ebMS Stack
3.2. STAR Web Services Stack
8.1. Infrastructure Level Security
8.2. Message Level Security
   Next
   Executive Summary