« Protect the transaction | Main | Of Assets and Threats »



Okay, first off, I'm not really familiar wth the various security standards of SOAP. I use the .NET implementation of web services in my job but that's about it. The reason I'm interested in REST is that in our system, we've ended up just passing XML around as the payload for the SOAP message. We haven't gone the whole WS-Security route because we've just ended up encrypting/signing the XML with the relevant W3C standards. Couldn't the same be done with REST to ensure message-level security?

The comments to this entry are closed.