File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Web Services and the fly likes Web services security � guidance Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Web Services
Bookmark "Web services security � guidance" Watch "Web services security � guidance" New topic

Web services security � guidance

Sharon whipple
Ranch Hand

Joined: Jul 31, 2003
Posts: 294
Hi all
I am relatively new to the java WS world, and after a while playing around with Axis2 / xFire and JAX-WS, I am moving on to the next level � security.

My app is assembled from client and web services module, what I am trying to achieve is:

1 only the client app can communicate the web-service.
2 Encrypted messages between the client and web-service

Currently the web-service implemented using JAX-WS (annotations java 5 standards)

What Should i read in order to get into wss?
Thank you!
Ashutosh Shahi
Ranch Hand

Joined: Feb 06, 2005
Posts: 36
Since you are already using JAXWS, you can use WSIT to secure your messages. Check out

<a href="" target="_blank" rel="nofollow"></a>
I agree. Here's the link:
subject: Web services security � guidance
It's not a secret anymore!