Service-oriented architecture changes the security equation by introducing a greater reliance on third parties for application development and operation. But according to Ray Wagner, managing vice president of information security and privacy at Gartner, this is a matter of degree rather than an introduction of a totally new security exposure. For instance, an SOA application may depend on a web-based third-party service to provide vital functionality, with obvious security implications.