开发者

Concepts involved in WS security?

Ple开发者_如何转开发ase can anyone explain briefly about concepts involved in WS security to protect soap from intermediate web services...


WS-Security does not implement anything new. It says how to use XML Encryption and XML Signature specifications in the SOAP world.

WS-Security is transport independent and provides message level security.

Since it's message level security - when we use encryption the message will be encrypted from a key known to the ultimate receiver, so intermediaries cannot view the message.

Thanks...


It is difficult to provide a simplistic answer unless we know what you are interested in (as Tim mentioned in his comment)

Have a quick read at this to get an idea.

http://www.ibm.com/developerworks/webservices/tutorials/ws-understand-web-services4/

This is not the only reference but think of it as a place to start.

Once you have an idea you will able to ask specific questions and the folks here would be able to help you out with their answers

HTH Manglu


JSR 109: Implementing Enterprise Web Services

... is also an interesting read. the doc has some further references on the topic.

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜