Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment > Secure web services > Secure web services > Administer Web Services Security > Administer message-level security for JAX-WS web services > Secure requests to the trust service using system policy sets > Trust service
Web Services Trust standard
Overview
WS-Trust defines a request and response protocol for security token exchange.
- A client sends a RequestSecurityToken to a security token service (trust service). The request includes the client security token.
- The security token service responds back with a RequestSecurityTokenResponse containing a new token.
WAS establishes a security context token for WS-SecureConversation, for
- issuance
- renewing
- validating
- cancelling
Support for submission draft and approved levels of the WS-Trust standard
WAS v8 supports the WS-Trust 2005 Submission Draft specification (Version 1.1). However, WAS implement all the contents of the WS-Trust draft specification.
Support for the approved version 1.3 specification, which is dated March 2007, is provided for WAS v7 and later. The security context token (SCT) provider supports the OASIS version 1.3 specifications for WS-Trust and WS-SecureConversation. There is a configuration option that allows support for the two different levels of the WS-Trust standard to co-exist on the same server. This provides interoperability between systems and products that support different specification levels. See the topic Configuring the security context token provider for the trust service using the admin console for details.
A setting is also provided to specifically disable support for the WS-Trust 2005 Submission Draft specification (Version 1.1) for the security context token provider. For more information about this property, refer to the topic Disabling the draft standard level for the security context token.
Processing a trust service request depends on the specifications referenced in the request. Also, the trust service response is determined by the level of the specification used in the request.
Refer to the wst namespace prefix used for WS-Trust in the Web Services Trust Language (WS-Trust) specification dated March 2007.
Related
IBM developerWorks .
http://docs.oasis-open.org/ws-sx/ws-trust/200512
Web Services Secure Conversation
Trust service
Related
Web Services Trust Language