WS-Security OASIS Standard
Wiki page: Submitted by carolgeyer on Wed, 2007-12-12 22:22. Last updated on Wed, 2007-12-19 15:03.
The Web Services Security (WS-Security) OASIS Standard specifies how SOAP messages can have their integrity and confidentiality ensured.
WS-Security defines a framework for securing SOAP messages, with the specifics being defined in profiles determined by the nature of the security token used to carry identity information. So, for instance, there are different profiles of WS-Security for various different security token formats such as X.509 certificates and Kerberos tickets.
WS-Security and SAML
The WS-Security SAML token profile specifies how SAML assertions can be used to provide message security.
Additionally, SAML itself points to WS-Security as an approved mechanism for securing SOAP messages carrying SAML protocol messages and assertions.
See also:
Search
SYNDICATE
RECENT CONTENT
- (1) direct communication and (2) forwarding the assertion
4 days ago
1 reply - "Security Challenges for the Information Society"
5 days ago - An Historical Timeline for SAML
1 week ago - SAML 1.0 mailing list archives
1 week ago - SAML Specifications
1 week ago - SAML 2.0 and WS-Security
1 week ago
1 reply
Currently online: 5 guests and 0 users:
