Steve Jones wrote: > I'd be a bit worried if security wasn't considered to be an SOA > capability, trust, privacy, authentication etc are all key business > concepts that need to be handled within a delivered SOA.
These things need to be an integrated part of the SOA so that when it is turned on, there is not a big bandaid placed over something that was broken, but instead, a switch is flipped and everyone sees an consistent change in behavior regarding any authentication or other interaction a client may have to do differently with a service. Gregg Wonderly
