WS-SecurityPolicy

WS -SecurityPolicy is a specification from the group of WS -* specifications for Web services. It defines so-called " safety- based policy assertions " for Web services. This refers to assurances that must be met by Web Services so that the safety issues are met. The transmission of this policy assertions can (and should) be on the WS-* specifications, including WS- Security, WS -Trust and WS -Secure Conversation, hedged.

In version 1.2, the specification of the Organization for the Advancement of Structured Information Standards ( OASIS ) was adopted on 1 July 2007 as standard.

Assurances

It can be taken at different levels of communication security assurances. These are message -layer and transport -layer security mechanisms. The following assertions are defined:

  • Protection assertions
  • Token assertions
  • Security Binding Assertions

Alternative

  • EXtensible Access Control Markup Language ( XACML ) - an XML schema and another standard for the OASIS WebService Security
830086
de