Solved

WS-Security, WS-Trust

Posted on 2014-07-31
1
434 Views
Last Modified: 2014-08-01
On a high level, what is the difference between WS-Secuirty and what it does, and WS-Trust, and what it does?

Thanks
0
Comment
Question by:Anthony Lucia
1 Comment
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 40234069
WS-Security is 'base' to WS-Trust. as the latter extends its with additional capability and standard. These are all about securing web services...

it started off with WS-Security specifying how integrity and confidentiality can be enforced on (SOAP) messages and allows the communication of various security token formats, such as Security Assertion Markup Language (SAML), Kerberos, and X.509. It lays the as a building block that can be used in conjunction with other Web service extensions.

then it comes WS-Trust specifying  that Security Token Service (STS) which is some sort of trusted authority that can issue parties requesting for security token to be trusted. STS is then (or can be) used by both web service clients and providers to perform operations on issued standard security tokens as mandated in WS-Security.  

in all, WS-Security lays the ground to say you can drive in a car as long as you have a driving licence but to get that licence, you need to take driving centre test to achieve it. The driving center is run by the trusted provider - in this manner someone legit (one who is 'WS-trust'ed)
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SHA2 certs for IIS AND Java? 2 113
On-premise Digitally Signed/Encrypted Secure E-mail Solutions 1 48
virus encrypted files with OSIRIS extension 12 61
google exe file 5 62
Ransomware is a growing menace to anyone using a computer or mobile device. Here are answers to some common questions about this vicious new form of malware.
Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
The viewer will learn how to create and use a small PHP class to apply a watermark to an image. This video shows the viewer the setup for the PHP watermark as well as important coding language. Continue to Part 2 to learn the core code used in creat…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question