Securing HTTP transport and authentication for Web services

Transport-level security is based on Secure Sockets Layer (SSL) or Transport Layer Security (TLS) that runs beneath HTTP. Transport level security can be used to secure Web services messages. A simple way to provide authentication data for a service client is to authenticate to a protected service endpoint using HTTP basic authentication.

About this task

The following topics provide more information about securing HTTP transport and authentication.

What to do next

  • Securing applications at the transport level for Web services

    Transport-level security is a well-known and often used mechanism to secure HTTP Internet and intranet communications. Transport level security can be used to secure Web services messages. Transport-level security functionality is independent from functionality that is provided by message-level security (WS-Security) or HTTP basic authentication.

  • Authenticating clients using HTTP basic authentication for Web services

    A simple way to provide authentication data for the service client is to authenticate to the protected service endpoint by using HTTP basic authentication. HTTP basic authentication uses a user name and password to authenticate a service client to a secure endpoint.

Task topic    

Terms of Use | Feedback

Last updated: Oct 20, 2010 9:57:58 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=compass&product=was-base-dist&topic=twbs_httpauthenticate
File name: twbs_httpauthenticate.html