I attempted to go through the Security concepts of Web Services in Mikhalai study material. The information is so vast that I hardly grasp anything
I lack the basic security concepts like Kerboros, PKI, Secure Tockens, etc. I'd like to know what basics do we need to understand Web Services Security in a better way. I also wonder how these secure XML SOAP messages are constructed using XML Transport security or XML Message level security. Is there any API which automatically does this for us or is there any considerable manual job involved? I also failed to understand which security mechanism does it really worth at what times. Finally, I'd like to know to what extent SCJWSD test our skills/ knowledge on Web Services security
Thanks in advance for your shedding light on this.
------------------ Thanks and Regards, Naren SCJP - 92% Preparing for SCJWSD
(OCEEJBD6, SCWCD5, SCDJWS, SCJP1.4 and Oracle SQL 1Z0-051)