+

Search Tips   |   Advanced Search

Configure generator signing information using the WSS APIs

We can configure the signing information to protect message integrity for the request (client side) generator binding. Signing information includes the signature and the signed parts. To keep the integrity of the message, digital signatures are typically applied.

In addition to using a digital signature and configuring the signing information, the following tasks should also be performed:

Integrity is provided by applying a digital signature to a SOAP message. To configure signing information to protect message integrity, first digitally sign and then verify the signature for the SOAP messages. Integrity decreases the risk of data modification when you transmit data across a network. message integrity is provided by digitally signing the body, time stamp, and WS-Addressing headers using the signature algorithm methods. The WSS APIs specify which algorithm is to be used to sign the certificate. The signature algorithms specify the Uniform Resource Identifiers (URI) of the signature method. WebSphere Application Server supports several pre-configured request signing algorithm methods.

We can use the following interfaces to configure Web Services Security and to protect SOAP message integrity:


Configure signing information and protect message integrity


Results

The WSS APIs also specify the security token for the generator (client) binding and set the type of token reference to protect message authenticity. By completing the steps in these tasks, you have configured generator signing to protect the integrity of the SOAP message.


What to do next

Verify the consumer signing information using the WSS APIs or by configuring policy sets using the console.


Subtopics


Related tasks