RAMP default policy sets

The Reliable Asynchronous Message Profile (RAMP) default policy sets are based on the Reliable Asynchronous Message Profile specification. The RAMP default policy sets include the RAMP default policy set, the Lightweight Third-Party Authentication (LTPA) RAMP default policy set and the Username RAMP default policy set. You can use these policy sets to simplify your Web services configuration.

The RAMP default policy sets are composed of a set of policies to provide reliable and secure Web services. The RAMP default policy sets use the WS-Addressing, WS-ReliableMessaging, and WS-Security specifications. Use the RAMP default policy set, the LTPA RAMP default policy set, or the Username RAMP default policy set as provided with the application server. To customize the policy sets, you must first copy the policy set, and then configure custom policy settings and bindings to meet your needs.

The RAMP default policy sets include the following policies:
WS-Addressing policy
You can use the WS-Addressing policy to enable the addressing capability of the WS-Addressing specification.
WS-ReliableMessaging policy
You can use the WS-ReliableMessaging policy to specify the quality of service for reliable delivery.
WS-Security policy
The WS-Security policy in the RAMP default policy set provides the following security:
  • Message integrity through digital signature that includes signing the body, time stamp, WS-Addressing headers and WS-ReliableMessaging headers using the WS-SecureConversation and WS-Security specifications.
  • Confidentiality through encryption that includes encrypting the body, signature elements, using the WS-SecureConversation and WS-Security specifications.
  • Traditional RSA cryptography is used to secure a request to a Trust Server to obtain a Secure Context Token (SCT). Thereafter, the conversation is secured using symmetric keys derived from the SCT.
Note: RAMP policy sets with SignatureConfirmation policy assertion are not supported for this feature pack.
The following RAMP default policy sets exist:
RAMP default
This policy set provides:
  • Reliable message delivery to the intended receiver by enabling WS-ReliableMessaging.
  • Message integrity through digital signature that includes signing the body, time stamp, WS-Addressing headers and WS-ReliableMessaging headers using the WS-SecureConversation and WS-Security specifications.
  • Confidentiality through encryption that includes encrypting the body, signature elements, using the WS-SecureConversation and WS-Security specifications.
LTPA RAMP default
This policy set provides the RAMP default policy set and adds a Lightweight Third Party Authentication (LTPA) token included in the request message to authenticate the client to the service.
Username RAMP default
This policy set provides the RAMP default policy set and adds a username token included in the request message to authenticate the client to the service. The username token is encrypted in the request.



Related concepts
Web services policy sets
Related tasks
Creating policy sets using the administrative console
Concept topic Concept topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 1:23:07 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-dist&topic=cwbs_wsspsramp
File name: cwbs_wsspsramp.html