Wednesday, December 6, 2017

WS-Security vs SSL/TLS Security with reference to WebServices

SSL/TLS encrypts at transport level; WS-Security encrypts at message level. SSL/TLS provides in-transit security only. This means that the request is only encrypted while it is travelling from client to server (or back). ... WS-Security maintains the encryption until the moment when the request is processed. SSL/TLS secure messages at HTTP level whereas WS-Security at XML level. In performance-wise SSL is very much faster than WS-Security.

Please note that REST-based WebServices inherits security measures from the underlying transport level security.

Limitation with SSL/TLS

1.      SSL/TLS is at point-to-point whereas WS-Security is at end-to-end, where multiple intermediary nodes (WebServers, Load balancer, proxy server etc) could exist between the two endpoints.
2.      SSL/TLS does not provide Know-Your-Customer (KYC) whereas WS-Security provides this feature.
3.      SSL does not provide element-wise signing and encryption. For example, if you have a large purchase order XML document, yet you want to only sign or encrypt a credit card element, signing or encrypting only that element with SSL proves rather difficult. Again, that is due to the fact that SSL is a transport-level security scheme as opposed to a message-level scheme.


We can configure transport level security and message level security without configuring SSL/TLS at server level  then you need to configure SSL/TLS WSM policy at WebService level for example oracle/wss_http_token_over_ssl_service_policy.

28 comments:

  1. This is such a good post. One of the best posts that I\'ve read in my whole life. I am so happy that you chose this day to give me this. Please, continue to give me such valuable posts. Cheers!
    Python training in marathahalli | Python training institute in pune

    ReplyDelete
  2. This is very good content you share on this blog. it's very informative and provide me future related information.

    advanced excel training in bangalore

    ReplyDelete
  3. I think this is a great site to post and I have read most of contents and I found it useful for my Career .Thanks for the useful information. Good work.Keep going.
    motorola service center
    motorola service center near me
    motorola mobile service centre in chennai

    ReplyDelete
  4. Quickbooks enterprise support Phone number Contact the QuickBooks Enterprise Support phone number for 24 hour support for Enterprise Quickbooks. The QuickBooks Enterprise support group is ready to solve the QuickBooks Enterprise problems. To contact our certified QuickBooks specialist, contact the Quickbooks support team at (833) 400-1001.

    ReplyDelete
  5. This is an awesome post.Really very informative and creative contents. These concept is a good way to enhance the knowledge.I like it and help me to development very well.Thank you for this brief explanation and very nice information.Well, got a good knowledge....
    java training in chennai

    java training in omr

    aws training in chennai

    aws training in omr

    python training in chennai

    python training in omr

    selenium training in chennai

    selenium training in omr

    ReplyDelete
  6. This concept is a good way to enhance the knowledge.thanks for sharing..

    Data Science
    Selenium
    ETL Testing
    AWS
    Python Online Classes

    ReplyDelete
  7. This is an awesome post.Really very informative and creative contents. These concept is a good way to enhance the knowledge.I like it and help me to development very well.Thank you for this brief explanation and very nice information.Well, got a good knowledge....
    DevOps Training in Chennai

    DevOps Course in Chennai


    ReplyDelete
  8. Good Post! , it was so good to read and useful to improve my knowledge as an updated one, keep blogging. After seeing your article I want to say that also a well-written article with some very good information which is very useful for the readers.thanks for sharing it and do share more posts like this.


    Python Online Training With placements
    Python Online Training

    ReplyDelete
  9. Such an interesting article here.I was searching for something like that for quite a long time and at last I have found it here. Silent Bob Coat

    ReplyDelete
  10. Great information about wilderness for beginners giving the opportunity for new people.
    Baron Zemo Coat

    ReplyDelete
  11. Our the purpose is to share the reviews about the latest Jackets,Coats and Vests also share the related Movies,Gaming, Casual,Faux Leather and Leather materials available Puffy Varsity Jacket

    ReplyDelete
  12. Thanks for sharing such a informative blog with us thank you bandit leather jacket

    ReplyDelete
  13. Our the purpose is to share the reviews about the latest Jackets,Coats and Vests also share the related Movies,Gaming, Casual,Faux Leather and Leather materials available. 12th Doctor Coat

    ReplyDelete
  14. Man's lives, such as uncontrolled huge amounts, definitely not while countries furthermore reefs, challenging to seismic disturbance upward perfect apply. migliore cannabis light italia

    ReplyDelete