WS Security is perhaps the most important development in the area of Web services security specifications because it tries to provide a broad base to the overall security architecture built around Web services. There were some initial criticisms about this initiative in the beginning, but nowwith the inclusion of Sun Microsystems and many other major vendorsthey are waning. Also, it initially appeared to be a Microsoft/IBM-dominated specification. There were even fears that these two companies would hold the royalty for the technology, but they have became baseless with the submission of WS Security to OASIS: a vendor-neutral standards body.
In my next article, I will take a detailed look at WS Security and other developments in the area of Web services security architectures.