| Article found | Fact |
|---|
|
Secure, Reliable, Transacted Web Services [FS03]
|
- defines an extensible model for setting up and verifying trust relationships
- The key concept in WS-Trust is a Security Token Service (STS). An STS is a distinguished Web service that issues, exchanges and validates security tokens. WS-Trust allows Web services to set up and agree on which security servers they "trust", and to rely on these servers.
- The STS has broad applicability in that it can be used to issue security tokens that make a wide range of assertions. In many cases it will be used to issue the same assertions but in different formats. For example, an STS might issue a Kerberos token asserting that the key holder is Susan and it might do this based on an X.509 certificate issued by a trusted Certificate
Authority. This enables organizations using different security technologies to federate. An STS might also issue a security
token asserting that the key holder is a member of the group BankTellers based on an incoming security token that asserts an
identity claim.
|
