2 Replies Latest reply on Nov 28, 2008 12:33 PM by Peter Johnson

    Asymmetric encryption with ws-security?

    null null Newbie

      Hi everybody,

      I need to encrypt a web service via ws-security. In every example I found there is always a mutual encryption. This means that both, client and server encode their messages using the public key of their counterpart. But this also means that the jboss web service needs a truststore containing the clients certificate. I wonder if there is no asymmetric way as in SSL, where the client simply donwloads the server certificate and they are able to exchange a secret key to communicate with. I know that it is possible to encrypt the web service request via the web containers SSL capabilities, but I definitely have to use the ws stack.
      Any Ideas?

      Thanks in advance,
      Oliver.