Securing composite applications is a critical and pressing requirement especially in a service oriented environment where business processes need to interact with numerous external service providers, vendors, and trading partners. Setting up security at the infrastructure as well as the application level is of primary importance while dealing with both on premise (departmental or internal) and external web services such as cloud based, across DMZs (Demilitarized Zones), and so on.

Whether it's choosing when to use SSL for encrypted HTTP transport, authenticating and authorizing users across different systems, or preserving message integrity, significant effort is put into protecting information that is critical and privileged to businesses. A security exposure can be disastrous and, therefore, protecting data in business transactions is critical to reducing security related risks. Add to this the fact that security requirements...