I would like the forum members bring to our notice all sorts of toolkits available for implementing web services security. As a starter, I am quoting from the book "Professional Web Servies Security" some of the toolkits identified in the book: 1. Netegrity - Federated Identity, SAML 2. Oblix Net Point 6 - -do- 3. Quadrasis - EASI Platform 4. InfoMosaid - Secure XML - DML DSig 5. IAIK JCE Toolkit - Java Cryptgraphy Extension 6. Microsoft - Web Services Enhjancements Please feel free to continue the list and not only that share your experiences with each of these toolkits
I, too, think that you should not have missed IBM's tools. Some of IBM's tools are free (of charge) and open source. They are perfect for book examples since you can show how they work internally ... Phaos also has some great tools. Also, if you are interested, check out my presentation on XML security.
Thank goodness for standards like WS Security. Also, I love using the toolkits for making it so much easier to implement security measures rather than relying on my own methods which are not as fullyt tested. I really hope that in the near future, implementations of the Web Services standards will be fully standards-compliant for interoperability's sake.