Securing web services at the transport level
Transport-level security is a well-known and often used mechanism to secure HTTP Internet and intranet communications. Transport-level security can be used to secure web services messages. Transport-level security functionality is independent from functionality that is provided by message-level security (WS-Security) or HTTP basic authentication. You can use the transport-level security binding to secure the communication between your web service client and web service provider.
Before you begin
About this task
Transport-level security is based on Secure Sockets Layer (SSL) or Transport Layer Security (TLS) that runs beneath HTTP.
SSL and TLS provide security features including authentication, data protection, and cryptographic token support for secure HTTP connections. To run with HTTPS, the service port address must be in the form https://. The integrity and confidentiality of transport data, including SOAP messages and HTTP basic authentication, is confirmed when you use SSL and TLS.
- Secured HTTP
- Basic authentication
- Client certification
Para obtener todos los elementos disponibles que puede configurar en el archivo ibm-ws-bnd.xml, consulte Liberty:El archivo ibm-ws-bnd.xml.