An Inquisitive Model for Security Of Web Services

Web services based on SOAP are developed with a common XML-based protocol. The main objective is to create a decentralized, distributed system for a machine readable document to be passed over any multiple connection protocols. Since SOAP doesn’t provide message security, other ways of securing messages are required. The proposed system suggests models of securities like SOAP, WS-Security, and their related specifications. On the whole in addition to this specification it also describes encoding of binary security tokens, based tokens framework for XML, the process of inclusion of opaque encrypted keys. It also includes extensibility mechanisms that can be used to further describe the characteristics of the tokens that are included with a message. This paper also discusses the advantages and disadvantages of the SOAP protocol, how it compares to various other distributed system protocols such as; CORBA, XML-RPC, and JAVA-RMI, and how SOAP fits into the distributed architecture.