Answer(s)
- company receives requests to their SOA applications via SOAP documents digitally signedusing WS-Security. They have a requirement to prove message integrity on incoming requests.They have created a WS-Proxy Service using a WSDL describing the application.There will be many clients making requests, but each will use an X.509 certificate created by asingle Certificate Authority. A copy the Certificate Authority public key has been provided.How can this task be performed?A. Use the Certificate Authority CRL (Certificate Reference List) to obtain the public X.509 keys,and use them in the WS-Proxy on-repudiation property
- Create a validation credential object using the Certificate Authority CRL to obtain the publicX.509 keys, and use this in a Non-repudiation action on the default request rule policy
- Create a validation credential object using the Certificate Authority CRL to obtain the publicX.509 keys, and use this in a Validate action on the default response rule policy
- Create a validation credential object using the Certificate Authority X.509 signer certificate, anduse this in a Non-repudiation action on the default response rule policy
- Create a validation credential object using the Certificate Authority X.509 signer certificate, anduse this in a Verify action on the default request rule policy
Correct Answer
Create a validation credential object using the Certificate Authority X.509 signer certificate, anduse this in a Verify action on the default request rule policy
