Although I have learned plenty about WSE2 from reading, thinking, going through the Hands on Lab and creating demos, I knew that if I really wanted to sweat, really wanted to cut my teeth, I would have to implement WSE2 into an existing application. One that wasn’t designed in advance for WSE2 or to implement ws-security, etc. In addition, I have the greatly educational challenge of not having X509 certificates (for the moment) at my disposal on my client’s web server. One thing this means is that I cannot just click “make this a secure conversation” in the WSE2 Policy Configuration Tool and be done with it. I will have to implement symmetric keys for this as well as for encrypting the response from my web service.

  Sign up for my newsletter so you don't miss my conference & Pluralsight course announcements!