From the Trenches - Security for Web Services
By superpat on Sep 11, 2008
Over at Sun Developer Network today, Sidharth Mishra talks to Marina Sum about Security for Web Services. It's an interesting, high-level discussion, covering both the motivations for securing Web services and some of the standards and technology in the area. In particular, there's a useful explanation of the role of the Security Token Service (STS) in brokering trust between Web service consumers and providers.
Get yourself a nice cup of tea (or, if you must, coffee ) and give it a read.