[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [wss] ISSUE 190: text for SOAP MustUnderstand issue
> I'm operating from the assumption that the receiver is providing
> some service. As "owner" of the service, the receiver _must_ have
> final say over what policy is applied. This includes the option of
> ignoring incoming security information, especially when that security
> information might be both irrelevant and quite expensive to process.
What about the other half of likely WSS uses, which are responses?
/r$
--
Rich Salz Chief Security Architect
DataPower Technology http://www.datapower.com
XS40 XML Security Gateway http://www.datapower.com/products/xs40.html
XML Security Overview http://www.datapower.com/xmldev/xmlsecurity.html
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]