Hi, I don't thing there is a standard / specification about keeping audit details in the WS-Sec* specs as it is an implementation specific thing. So we will have to come up with a feature list and decide how we are going to do this. I think Axis2/Rampart users/developers can help giving ideas about what information should be stored, how those can be secured and how those can be presented. I found this [1] document to be bit useful.
thanks, nandana [1] - csrc.nist.gov/publications/nistpubs/800-95/SP800-95.pdf
