[Nsi-wg] Issue 47 in ogf-nsi-project: Add WS-Secuirty policy definitions to WSDL for digital signing of NSI SOAP message
ogf-nsi-project at googlecode.com
ogf-nsi-project at googlecode.com
Wed Oct 19 09:57:40 CDT 2011
Status: Accepted
Owner: jmacau... at gmail.com
Labels: Type-Defect Priority-Medium FoundInVersion-1.Rio FixedInVersion-2.0
New issue 47 by jmacau... at gmail.com: Add WS-Secuirty policy definitions to
WSDL for digital signing of NSI SOAP message
http://code.google.com/p/ogf-nsi-project/issues/detail?id=47
Description of Issue:
Need to validate the integrity of an NSI message as well as validate it is
issued from the expected NSA.
Discussion of Issue:
It was previously agreed that the "transport layer" would digitally sign
the NSI message to verify it was not tampered with, and is from the
expected sender. This can be accomplished by using WS-Secuirty policy
definitions in the WSDL. This mechanism is currently being used by OSCARS
and is accepted as a common web service practice.
Resolution of Issue:
Add WS-Secuirty policy definitions to WSDL for digital signing of NSI SOAP
message and NSA implement the solution.
More information about the nsi-wg
mailing list