Web Service Attributes Editor: Client/Service WSS Requirements

See Also 

The Client/Service WSS Requirements section of the Web Service Attributes editor is part of the security features provided by the Web Services Interoperability Technology (WSIT).

When you expand the Client/Service WSS Requirements section, you find the following subsections:

• Key Identifier References. When using tokens, you can refer to the key directly using the <ds:KeyName> tag or by reference using the <wsse:KeyIdentifier> tag. Selecting this option specifies that the <wsse:KeyIdentifier> tag will be used.
• Issuer Serial References. A serial reference is a reference to another reference, which itself refers to a third reference, and so on. Selecting this option enables the client/Web service to handle serial references.
• External URI References. Selecting this option enables the client/Web service to handle URI references to tokens that are outside the SOAP message.
• Embedded Token References.

For version 1.1:

• Thumbprint References. Selecting this option ensures that token references are unambiguous. This ensures that authorized claims can be attributed to a message as a result of a successful signature validation.
• EncryptedKey References. When a <xenc:EncryptedKey> element is used to carry key material encrypted for the recipient’s key, the key material is referred to as EncryptedKey. The EncryptedKey may be used to perform other cryptographic operations with the same message, such as signatures. It may also be used to for performing cryptographic operations in subsequent messages exchanged by the client and Web service
• Signature Confirmation. When the message initiator indicates the parts of a message were signed, the initiator may also want to confirm that the message returned by the recipient to the initiator was generated in response to the message in its unaltered form. This helps to prevent certain forms of attack. Selecting this option enables the initiator to confirm that the message was not altered.