Does JBoss have similar capabilities as described below ?
(This comes from an article on WebSphere...)
Configure Web services digital signature authentication
With digital signature authentication, the client generates a security token, based on a digital signature, and embeds it in the SOAP message.
The server then extracts the token and validates it by using a Java Authentication and Authorization Service (JAAS) login module.
Note: To use the digital signature authentication mechanism for Web services, you must configure WebSphere global security. For more information, see Configure global security in the Security topic.
Thanks in advance--
Robert