+

Search Tips   |   Advanced Search

Secure Web services for V5.x applications using XML encryption


XML encryption is one method that WAS provides to secure the Web services. It enables you to encrypt an XML element, the content of an XML element, or arbitrary data such as an XML document.

There is an important distinction between V 5.x and V6 and later applications. The information in this article supports V5.x applications only that are used with WAS V6.0.x and later. The information does not apply to V 6.0.x and later applications. WAS provides several different methods to secure the Web services. XML encryption is one of these methods. We can secure the Web services using any of the following methods:

XML encryption enables you to encrypt an XML element, the content of an XML element, or arbitrary data such as an XML document. Like XML digital signature, a message is sent by the client as the request sender to the server as the request receiver. The response is sent by the server as the response sender to the client as the request receiver. Unlike XML digital signature, which verifies the authenticity of the sender, XML encryption scrambles the message content using a key, which can be unscrambled by a receiver that possesses the same key. Use XML encryption in conjunction with XML digital signature to scramble the content while verifying the authenticity of the message sender.

To use XML encryption to secure Web services, use an assembly tool.

See the related information on Assembly Tools.

To securing Web services for V5.x applications using XML encryption...

 

  1. Specify the encryption settings for the request sender. The message parts and the encryption method settings chosen for the request sender on the client must match the message parts and the method settings chosen for the request receiver on the server. To specify the encryption settings for the request sender:

    1. Set the client for request encryption: Encrypting the message parts.
    2. Set the client for request encryption: choosing the encryption method.

  2. Specify the encryption settings for the request receiver.

    The decryption settings chosen for the request receiver must match the encryption settings chosen for the request sender.

    To specify the decryption settings for the request receiver:

    1. Set the server for request decryption: decrypting the message parts.
    2. Set the server for request decryption: choosing the decryption method.

  3. Specify the encryption settings for the response sender.

    The message parts and the encryption method settings chosen for the response sender on the server must match the message parts and the method settings chosen for the response receiver on the client. To specify the encryption settings for the response sender:

    1. Set the server for response encryption: encrypting the message parts.
    2. Set the server for response encryption: choosing the encryption method.

  4. Specify the encryption settings for the response receiver. Remember: The decryption settings chosen for the response receiver must match the encryption settings chosen for the response sender.

    To specify the decryption settings for the response receiver...

    1. Set the client for response decryption: decrypting the message parts.
    2. Set the client for response decryption: choosing a decryption method.

 

Results

After completing these steps, we have secured the Web services using XML encryption.


Login bindings settings
Request sender
Set the client for request encryption: Encrypting the message parts
Set the client for request encryption: choosing the encryption method
Request receiver
Set the server for request decryption: decrypting the message parts
Set the server for request decryption: choosing the decryption method
Response sender
Set the server for response encryption: encrypting the message parts
Set the server for response encryption: choosing the encryption method
Response receiver
Set the client for response decryption: decrypting the message parts
Set the client for response decryption: choosing a decryption method

 

Related concepts


XML encryption
XML digital signature
Assembly tools

 

Related tasks


Secure Web services for V5.x applications based on WS-Security