Securing Apache SOAP Web services:

Securing Apache SOAP Web services

The Simple Object Access Protocol (SOAP) security extension, included with WebSphere Application Server, is a security architecture based on the Apache SOAP security specification, and widely-accepted security technologies such as SSL .
There are three options for security when using HTTP as the transport protocol:

HTTP basic authentication
SSL (HTTPS)
SOAP signature

One can combine these security options according to your specific security requirements.
Because the SOAP specification does not address all security issues, several proposals evolved to bridge the security gaps. See Web services: Resources for Learning for more information about additional documentation.
Web services: Links

WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.

IBM is a trademark of the IBM Corporation in the United States, other countries, or both.