XML digital signature is one of the methods WebSphere® Application
Server provides to secure your web services. It provides message integrity
and authentication capabilities when used with SOAP messages.
Before you begin
Important: There is an important distinction between
Version 5.x and Version 6.0.x and later applications.
The information supports Version 5.x applications only that
are used with WebSphere Application Server Version 6.0.x and
later. The information does not apply to Version 6.0.x and
later applications.
WebSphere Application Server
provides several different methods to secure your web services; XML
digital signature is one of these methods. You can secure your web
services by using any of the following methods:
- XML digital signature
- XML encryption
- Basicauth authentication
- Identity assertion authentication
- Signature authentication
- Pluggable token
About this task
XML digital signature provides both message integrity and
authentication capabilities when it is used with SOAP messages. A
message receiver can verify that attackers or accidents have not altered
parts of the message after the message was signed by a key. If a message
has a digital certificate issued by a certificate authority (CA) and
a signature in the message is validated successfully by a public key
in the certificate, it is proof that the signer has the corresponding
private key. To use XML digital signature to secure web services,
complete the following steps: