保護 Web 服務的安全
「Web 服務安全」規格會定義用於保護訊息完整性和機密性的核心機能,並提供可建立安全相關要求與訊息之關聯的機制。「Web 服務安全」是 IBM Web 服務引擎的一項延伸,可提供服務的品質。
次主題
Securing web services applications at the transport level
Transport-level security is a well-known and often used mechanism to secure HTTP Internet and intranet communications. Transport level security can be used to secure web services messages. Transport-level security functionality is independent from functionality that is provided by message-level security (WS-Security) or HTTP basic authentication.Authenticating web services clients using HTTP basic authentication
A simple way to provide authentication data for the service client is to authenticate to the protected service endpoint by using HTTP basic authentication. HTTP basic authentication uses a user name and password to authenticate a service client to a secure endpoint.Securing JAX-WS web services using message-level security
Web Services Security standards and profiles address how to provide message-level protection for messages that are exchanged in a web service environment.使用訊息層次安全維護 JAX-RPC Web 服務
標準和設定檔規定如何為 Web 服務環境中交換的訊息提供保護。Securing web services using Security Markup Assertion Language (SAML)
The Security Assertion Markup Language (SAML) is an XML-based OASIS standard for exchanging user identity and security attributes information. Using SAML, a client can communicate assertions regarding the identity, attributes, and entitlements of a SOAP message. You can apply policy sets to JAX-WS applications to use SAML assertions in web services messages and in web services usage scenarios. Use SAML assertions to represent user identity and user security attributes, and optionally, to sign and to encrypt SOAP message elements.Authenticating web services using generic security token login modules
You can use the generic security token login modules to issue, validate, and exchange security tokens using an external Security Token Service (STS).Web Services Security concepts
The Web Services Security specification defines core facilities for protecting the integrity and confidentiality of a message, and provides mechanisms for associating security-related claims with a message.移轉 Web 服務安全
您可以將「Web 服務安全」連結從 WebSphere® Application Server 舊版本移轉至最新版本。產品移轉功能可處理移轉處理程序的絕大部分,但對於特定的配置,則需要您的輸入和動作才能完成移轉。Developing applications that use Web Services Security
The Web Services Security specification provides a flexible framework for building secure web services to implement message content integrity and confidentiality. The Web Services Security service programming model supports this flexible framework by providing extension points to integrate new token formats, and methods to obtains keys needed for message protection. The application server programming model provides Web Services Security programming application programming interfaces (WSS API) for securing SOAP messages.Configuring Web Services Security during application assembly
If you configure Web Services Security with an assembly tool, the Web Services Security binding information is modifiedAdministering Web Services Security
To secure web services, you must consider a broad set of security requirements, including authentication, authorization, privacy, trust, integrity, confidentiality, secure communications channels, delegation, and auditing across a spectrum of application and business topologies. You can choose to configure Web Services Security for the application level, the server level or the cell level, depending upon your environment and security needs.Deploying applications that use SAML
After SAML policy sets and bindings have been configured, and SAML tokens created, the SAML token information can be sent from the original login server to other servers using the SAML propagation feature. You can also extract SAML attributes from an existing SAML token and then create additional tokens using the extracted attributes.Tuning Web Services Security
When using Web Services Security for message-level protection of SOAP message in WebSphere® Application Server, the choice of configuration options can affect the performance of the application.


http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-nd-mp&topic=container_wssec_top
檔名:container_wssec_top.html