Home
Topics
Topics Archive
WS-Security (Web services security standards)
WS-Security (Web Services Security)

Definition

WS-Security (Web Services Security)

WS-Security (Web Services Security) is a proposed IT industry standard that addresses security when data is exchanged as part of a Web service. WS-Security is one of a series of specifications from an industry group that includes IBM, Microsoft, and Verisign. Related specifications include the Business Process Execution Language (BPEL), WS-Coordination, and WS-Transaction.

WS-Security specifies enhancements to SOAP (Simple Object Access Protocol) messaging aimed at protecting the integrity and confidentiality of a message and authenticating the sender. WS-Security also specifies how to associate a security token with a message, without specifying what kind of token is to be used. It does describe how to encode X.509 certificates and Kerberos tickets. In general, WS-Security is intended to be extensible so that new security mechanisms can be used in the future.

The WS-Security specification is an activity of the Web Service Interoperability Organization (WS-I Organization) which is an industry-wide effort at standardizing how Web services are requested and delivered.

This was last updated in September 2005

Posted by: Margaret Rouse

Email Alerts

Register now to receive SearchSOA.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

More News and Tutorials

Burton: Choosing an SOA mediation system

Web services management products provide the broadest range of capabilities; WS-Policy will be key down the road, analyst says.
Reactivity's Nash on who controls SOA

Andrew Nash is the chief technology officer at Reactivity Inc. He is the co-author of numerous Web Services specifications including WS-Security, WS-Trust, WS-Federation, WS-SecureConversation and WS-SecurityPolicy. Previously he was a director of technologies at RSA Security. He has also authored a book on public key infrastructure. Read Part 2
SAML gains momentum

The federated identity specification SAML 2.0 just went through its latest round of interoperability testing with IBM, NEC, NTT and RSA Security demonstrating they can share identity inside a Web services network.

Do you have something to add to this definition? Let us know.

Send your comments to techterms@whatis.com

Research More Tech Terms

Search thousands of tech definitions
Browse tech definitions
Browse Alphabetically:
- A
- B
- C
- D
- E
- F
- G
- H
- I
- J
- K
- L
- M
- N
- O
- P
- Q
- R
- S
- T
- U
- V
- W
- X
- Y
- Z
- #

Powered by WhatIs.com

File Extensions and File Formats

File Extension and File Formats List:

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
#

Powered by WhatIs.com

More from Related TechTarget Sites

Cloud computing
Java
Business Analytics
Oracle

Cloud computing
- PaaS market heats up with Red Hat OpenShift, Savvis AppFog buy
  
  PaaS made headlines last week, but it's still difficult to gauge the true level of interest in Platform as a Service in the enterprise world.
- IBM, Salesforce deals usher in cloud consolidation era
  
  IBM's SoftLayer buy is getting mixed reviews from IT pros, but everyone agrees that it's an example of the consolidation phase of the cloud bubble.
- U.S. defense agencies' cloud transition yields better intelligence
  
  A cloud migration seems daunting but the effort is worthwhile; U.S. defense agencies say their cloud move led to better military intelligence.
Java
- CamelOne 2013: Lockheed engineers explain Java and C++ messaging
  
  At CamelOne 2013, software engineers from Lockheed Martin explain how they use Camel with C++ for a flight scheduling app.
- Will the Red Hat model work for IaaS cloud computing with OpenStack?
  
  The Red Hat transition is to move their successful model to IaaS through OpenStack and cloud computing. But will this new move from the JBoss company work as well as RHEL did a decade ago?
- How Red Hat's Linux and OpenStack IaaS drives Intel's bottom line
  
  While a major protectorate of intellectual property, Red Hat Linux and OpenStack IaaS offerings provide the bonus of driving innovation, which leads to more chips being purchased, driving revenue at Intel's bottom line.
Business Analytics
- No more shortcuts: Sound data quality strategy a must for BI success
  
  In the past, companies might have gotten away with not building data quality efforts into business intelligence programs. That's less likely now.
- Member Exclusive Downloads
  
  Member Exclusive Downloads from SearchBusinessAnalytics
- In-memory applications take on big data analytics challenge
  
  In-memory tools and big data can be a potent analytics mix. But before you put them together, read advice from experienced users and consultants.
Oracle
- The future of Dell Toad: Oracle DBAs can use BI, Exadata features
  
  Dell Toad is pushing itself into business intelligence and now has an edition to support Oracle's big Exadata appliance.
- Unlock the potential of the Oracle Exadata architecture
  
  Despite being almost five years old now, many implementations haven't realized all of the Oracle Exadata architecture benefits.
- The state of Dell Toad: Oracle DBAs and how they can still benefit
  
  Since Dell acquired Quest Software, maker of the Toad tool for Oracle databases and applications, some questions have arisen about what would happen.

All Rights Reserved,Copyright 2001 - 2013, TechTarget