Securing web services
Web services security for WebSphere®
Application Server is based on the OASIS web services security (WSS) Version 1.0 specification, the
Username token Version 1.0 profile, and the X.509 token Version 1.0 profile. These standards and
profiles address how to provide protection for messages that are exchanged in a web service
environment.
Web services security overview Securing a web service by using a WS-Security policy Securing a web service by using a WS-Security policy without a WSDL contract Qualities of service for JAX-WS web services and clients Creating a policy set attachment on the client side Creating a policy set attachment on the server side Modifying policy set attachments Editing policy set bindings Importing policy sets into your workspace