Figure 3. More Secure
After an XML gateway is in place, it filters incoming and outgoing XML traffic according to security rules. Only those messages that successfully pass all security filters are routed on to the internal Web service. The gateway blocks messages that fail any of the filters. In this way, Web services residing on the corporate network are shielded from unauthorized external users.