Securing Web Logic WebServices with WS-policy

Asked May 15 '12 at 19:26

Active May 17 '12 at 08:45

Viewed 137 times

I have developed webservice for my clients who access it over VPN(Mostly Telecom provides access over it for sake of security)

Keeping in view above scenario do i required to implement WSSecurity for my webservice?

if yes then what type of policy should use?

Update:

I want to highlight one point that multiple customers are connected with one server. Different webservices are exposed to different customers. so to restrict one client to access other client webservice we have to implement some username password policy.

Please comment.

Regards, imran

edited May 17 '12 at 08:45

asked May 15 '12 at 19:26

ImranRazaKhan

1,321
3
21
53

1

Depends on your VPN definition. Is it defined xxx.xxx.xxx.xxx/30? Then, extra security would not be needed as your network definition excludes any other connection to the VPN subnet... Also, how strong is encryption for your VPN? – Alfabravo May 15 '12 at 19:30
We are using 3DES encryption. But here it is one point that multiple customers are connected to one server. So any username/password policy should be enough. – ImranRazaKhan May 16 '12 at 08:14

Securing Web Logic WebServices with WS-policy

0 Answers0