Configure the server for response encryption: encrypting the message parts

Prior to completing these steps, read either of the following topics to become familiar with the Security Extensions tab and the Binding Configurations tab in the Web services editor within the Assembly Toolkit...

These two tabs are used to configure the Web services security extensions and the Web services security bindings, respectively.

Complete the following steps to specify which parts of the response message to encrypt when configuring the server for response encryption...

  1. Launch the Assembly Toolkit.

  2. Open the J2EE perspective by clicking Window > Open Perspective > Other > J2EE.

  3. Select the Web services-enabled Enterprise JavaBean (EJB) or Web module.

  4. In the Project Navigator window, locate the META-INF directory for an EJB module or the WEB-INF directory for a Web module.

  5. Right-click the webservices.xml file, select Open With > Web Services Editor.

  6. Click the Security Extensions tab, which is located at the bottom of the Web Services Editor within the Assembly Toolkit.

  7. Expand Response Sender Service Configuration Details > Confidentiality. Confidentiality refers to encryption while integrity refers to digital signing. Confidentiality reduces the risk of someone understanding the message flowing across the Internet. With confidentiality specifications, the response is encrypted before it is sent and decrypted when it is received at the correct target. For more information on encrypting, see XML encryption.

  8. Select the parts of the response that you want to encrypt by clicking Add and selecting Bodytoken or Usernametoken.The following information describes the message parts...

    Bodycontent User data portion of the message.

    Usernametoken Basic authentication information, if selected.

    A user name token does not appear in the response so you do not need to select this option for the response. If you select this option, make sure that you also select it for the client response receiver. If you do not select this option, make sure that you do not select it for the client response receiver.

After you specify which message parts to encrypt, specify which method to use message encryption. See Configuring the server for response encryption: Choosing the encryption method for more information.

 

See Also

Response sender
XML encryption
Configuring the server for response encryption: Choosing the encryption method
Configuring key locators using the Assembly Toolkit
Configuring key locators using the administrative console
Configuring the server security bindings using the Assembly Toolkit
Configuring the server security bindings using the administrative console