+

Search Tips   |   Advanced Search

Enable hardware cryptographic devices for WS-Security


We can enable WS-Security by using cryptographic hardware devices for both Web service clients and Web service providers that are running in the WAS environment. A cryptographic token is a hardware or software device with a built-in keystore implementation. Cryptographic devices are used to manage certificates stored on the cryptographic tokens. These devices are also called smartcards. You enable hardware cryptographic devices for Web service security by either using keys that are stored in hardware devices or by using keys stored in a Java keystore file.

WS-Security using cryptographic hardware devices is supported for both Web (JSP or servlet) and EJB Web service clients. We can enable WS-Security by using cryptographic hardware devices for both Web service clients and Web service providers that are running in the WAS environment.

There are two ways to enable hardware cryptographic devices for Web service security: use keys that are stored in hardware devices or use keys stored in a Java keystore file.

 

  1. Determine whether to use keys that are stored in hardware devices or in a Java keystore file for the individual application.

  2. Enable hardware cryptographic devices for Web service security by using one of the following two methods:

    Hardware cryptographic devices for WS-Security are not supported on the Java EE Application Client on distributed platform.


Set hardware cryptographic devices for WS-Security
Enable cryptographic keys stored in hardware devices in WS-Security

 

Related concepts


Hardware cryptographic device support for WS-Security

 

Related tasks


Secure Web services applications using message level security