Hi Miguel, when looking for Security for Web Services you should have a look at SAML.
For Security at the application Layer you should use XML-Encryption / XML-Signatures. If you use both will have made a big step forward securing your Services. Andreas Ullmann > How is security normally implemented when dealing with web services? I know > the connection from the client to the server can be sent over HTTPS. > However, how do tools like Single Sign-On tools come in to play. Can cookies > be passed from the client to the server? Where can I get more information > regarding the standardization of a security layer to web services. > > Miguel -- [EMAIL PROTECTED] MATHEMA AG Nägelsbachstraße 25b 91052 E r l a n g e n Telefon 09131/8903-0 Telefax 09131/8903-55 http://www.mathema.de -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>