i am working on a web services project and we are looking at various authentication technologies for web services and also toolkits for implementing web services security.
i looked at the ws-security specs and found some interesting approaches to authenticate users in a web service application. I also read about the IBM and Phaos toolkit for implementing XML encryption for XML security.
Has anybody worked with SAML and other WS-Security technologies and if so, can you provide some insight into those. I would also like to hear about binary XML specs, if anybody has some interesting resources.