Sudhir Bhojwani

Subscribe to Sudhir Bhojwani: eMailAlertsEmail Alerts
Get Sudhir Bhojwani: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Top Stories by Sudhir Bhojwani

Wednesday, February 16, 2005 10:00 A.M. - 9:50 A.M. Even though WS-* security standards (WS-Security, WS-Trust, WSSecureConversation, WS-Policy, etc.) are sufficiently prescriptive on specific security subjects like signing, SOAP message encryption, request/receive security tokens, they do not provide end-to-end security protocol that Web services can depend on to meet their security requirements. The most significant gap is identity propagation from a Web service into a J2EE container. Current JAX-RPC specification or JSR 109 does not cover this issue. This presentation identifies the gaps and discusses the approaches to plug these gaps. It also discusses implementation of a solution for identity propagation from client to Web service and from Web service to J2EE container. "WLDJ" Articles On This Subject Even though WS-* security standards (WS-Security, WS-Trust... (more)