This is interesting..

http://janapriya.net/blog/2008/07/14/service-oriented-architecture-soa-robotics/

Rogue Services the ‘Silent Killer’ in SOA : Myths and Realities

Extracted from [1],

Rogue services within an SOA are mismanaged or lost Web services that cause problems for unknowing IT managers who might be using them. In a worst-case scenario, a rogue service does not comply with business policies and/or compliance mandates, resulting in costly, and potentially contentious, audits.

Three of the top 10 misconceptions about SOA management and governance that apply to the impact of rogue services on IT infrastructure are as follows:

1. Perception: rogue services are a result of malicious code planted by hackers.
   Reality: not always. Packaged applications may contain unidentified services that are susceptible to being used in unintended ways.
2. Perception: a company’s security infrastructure prevents the proliferation of rogue services.
   Reality: rogue services can undermine a company’s security initiatives, making financial and other confidential information vulnerable.
3. Perception: rogue services are bothersome but not dangerous.
   Reality: rogue services can lead to prosecution or company shutdowns if compliance mandates are not met.

“Rogue services lurk in the shadows of many SOAs and most IT organizations are not doing enough to prevent their proliferation, Rogue services can truly be silent killers. For example, if a rogue service is embedded within a financial application, Sarbanes-Oxley compliance can be compromised resulting in company executives having to testify in court as to why and how an unknown Web service captured credit card data that was accessed by hackers. The good news is that proper management and governance will help organizations develop water-tight SOA environments.”

[1] http://www.actional.com/news_events/press/Rogue-Services-in-SOA.html