Securing Web services at the message level

Protect the integrity and confidentiality of a message and associate security-related claims with the message.

  • Securing applications using message level security for Web services

    Web services security standards and profiles describe how to provide security and protection for SOAP messages that are exchanged in a Web services environment.

  • Configuring custom properties to secure Web services

    You can configure name-value pairs of data, where the name is a property key and the value is a string value that you can use to set internal system configuration properties. Defining a new property enables you to configure a setting beyond that which is available through options in the administrative console.

  • Building XPath expressions for WS-Security

    JAX-RPC and JAX-WS WS-Security configurations use XML-based SOAP messages to exchange information between applications. You can use an XPath expression to select specific elements in a SOAP message to sign or encrypt.

  • Web services security concepts

    The Web services security specification defines core facilities for protecting the integrity and confidentiality of a message, and provides mechanisms for associating security-related claims with a message.WS-Security

  • Service Programming Interfaces (SPI)

    The Web Services Security service programming interface (WSS SPI) provides programming interfaces for securing Web services security.

  • Securing JAX-WS Web services using message-level security

    Web services security standards and profiles address how to provide message-level protection for messages that are exchanged in a Web service environment.

  • Securing JAX-RPC Web services using message level security

    Standards and profiles address how to provide protection for messages that are exchanged in a Web service environment.

  • Securing Web services using Security Assertion Markup Language (SAML)

    You can use the product Security Assertion Markup Language (SAML) function to apply a default policy to use SAML assertions in Web services messages and in Web services usage scenarios.

  • Enabling hardware cryptographic devices for Web Services Security

    You can enable Web Services Security by using cryptographic hardware devices for both Web service clients and Web service providers that are running in the WebSphere® Application Server environment. A cryptographic token is a hardware or software device with a built-in keystore implementation. Cryptographic devices are used to manage certificates stored on the cryptographic tokens. These devices are also called smartcards. You enable hardware cryptographic devices for Web service security by either using keys that are stored in hardware devices or by using keys stored in a Java keystore file.

  • Securing Web services for Version 5.x applications based on WS-Security

    Web services security for WebSphere Application Server is based on standards included in the Web Services Security (WS-Security) specification. These standards address how to provide protection for messages exchanged in a Web service environment.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Jun 11, 2013 8:40:09 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=v701sca&product=was-nd-mp&topic=twbs_wssec_securemsglevel
File name: twbs_securemsglevel.html