RE: Problems with the SOAP binding

Yes, if you relax the rules for opacity, and allow the client to
do special processing when required, then the client can "merge"
the two ws-security messages (one in the refp and one it generates).

So yes, since the current SOAP binding is "broken," this change to the
SOAP binding will address the issue.  As I said on the call (and in
email), I'd want Gudge's opinion.

It'll be interesting to see how to violate opacity. :)
Rich Salz                  Chief Security Architect
DataPower Technology
XS40 XML Security Gateway
XML Security Overview

Received on Tuesday, 21 December 2004 23:44:41 UTC