Java WebService Security

i implementing Java WebService with JAX-WS and no开发者_JAVA百科w need to secure my webservice with username and password when requester call webService , i need solution that send username and password on Header of SOAP and webservice get this and Authenticate user. do you have any idea for implementing this on standard way ?

now i can send username and password with soap header , but i need solution that encrypt SOAP header and content , do you have standard way for this work ?

Bag o' links, incoming:

• How do I do basic authentication in JAX-WS?
• Example: Basic Authentication with JAX-WS (The Java EE 6 Tutorial)
• Metro Guide - Security Mechanisms
• What is the best prctice for using security in JAX-WS
• JAX-WS and BASIC authentication, when user names and passwords are in a database
• JAX-WS authentication against a database

There is a ton of info out there already. Have you read anything?