The Reliable Asynchronous Message Profile (RAMP) default policy
sets are based on the Reliable Asynchronous Message Profile specification.
The RAMP default policy sets include the RAMP default policy set, the Lightweight
Third-Party Authentication (LTPA) RAMP default policy set and the Username
RAMP default policy set. You can use these policy sets to simplify your Web
services configuration.
The RAMP default policy sets are composed of a set of policies to provide
reliable and secure Web services. The RAMP default policy sets use the WS-Addressing,
WS-ReliableMessaging, and WS-Security specifications. Use the RAMP default
policy set, the LTPA RAMP default policy set, or the Username RAMP default
policy set as provided with the application server. To customize the policy
sets, you must first copy the policy set, and then configure custom policy
settings and bindings to meet your needs.
The RAMP default policy sets include the following policies:
- WS-Addressing policy
- You can use the WS-Addressing policy to enable the addressing capability
of the WS-Addressing specification.
- WS-ReliableMessaging policy
- You can use the WS-ReliableMessaging policy to specify the quality of
service for reliable delivery.
- WS-Security policy
- The WS-Security policy in the RAMP default policy set provides the following
security:
- Message integrity through digital signature that includes signing the
body, time stamp, WS-Addressing headers and WS-ReliableMessaging headers using
the WS-SecureConversation and WS-Security specifications.
- Confidentiality through encryption that includes encrypting the body,
signature elements, using the WS-SecureConversation and WS-Security specifications.
- Traditional RSA cryptography is used to secure a request to a Trust Server
to obtain a Secure Context Token (SCT). Thereafter, the conversation is secured
using symmetric keys derived from the SCT.
Note: RAMP policy sets with SignatureConfirmation policy assertion
are not supported for this feature pack.
The following RAMP default policy sets exist:
- RAMP default
- This policy set provides:
- Reliable message delivery to the intended receiver by enabling WS-ReliableMessaging.
- Message integrity through digital signature that includes signing the
body, time stamp, WS-Addressing headers and WS-ReliableMessaging headers using
the WS-SecureConversation and WS-Security specifications.
- Confidentiality through encryption that includes encrypting the body,
signature elements, using the WS-SecureConversation and WS-Security specifications.
- LTPA RAMP default
- This policy set provides the RAMP default policy set and adds a Lightweight
Third Party Authentication (LTPA) token included in the request message to
authenticate the client to the service.
- Username RAMP default
- This policy set provides the RAMP default policy set and adds a username
token included in the request message to authenticate the client to the service.
The username token is encrypted in the request.
-