Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment > Secure web services > Secure web services > Web Services Security concepts > Web Services Security concepts for v5.x applications
Trusted ID evaluator
The trusted ID evaluator is an abstraction of the mechanism that evaluates whether the given ID name is to be trusted. The trusted ID evaluator is typically used by the eventual receiver in a multi-hop environment.
There is an important distinction between v5.x and Version 6.0.x applications. The information in this article supports Version 5.x applications only that are used with WAS v6.0.x and later. The information does not apply to Version 6.0.x applications.
Depending upon the implementation, you can use various types of infrastructure to store a list of the trusted IDs, such as:
- Plain text file
- Database
- LDAP server
The Web Services Security implementation (com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator) invokes the trusted ID evaluator and passes the identity name of the intermediary as a parameter. If the identity is evaluated and deemed trustworthy, the procedure continues. Otherwise, an exception is created and the procedure is stopped.
Secure web services for v5.x applications using XML digital signature