What is the security advantage of STS in web services?

views:

answers:

+1 Q:

What is the security advantage of STS in web services?

Hello,

I've started reading up on security (particularly authentication) with web services and I see a lot of references to security token services.

From what I see, they take a username-password (or something) and, on validation, return a digital token. How is using this token any more secure then just relying on the username-password in the first place?

related questions

Displaying Version Information in a Web Service

Example Web Service

SoapException: Root element is missing occurs when .NET web service called from Flex

Best practice for webservices

What is your preferred method of sending complex data over a web service?

.Net - Returning DataTables in WCF

Is it possible to return objects from a WebService?

How much extra overhead is generated when sending a file over a web service as a byte array?

Returning Large Results Via a Webservice

File Uploads via Web Services

best way to persist data in .NET Web Service

What is the difference between an endpoint, a service, and a port when working with webservices?

Calling REST web services from a classic asp page

Best way to write a RESTful service "client" in .Net?

Where can I find some good WS-Security introductions and tutorials?

ASP.NET Web Service Results, Proxy Classes and Type Conversion

Web Services -- WCF vs. Standard

C# WCF Service - Backward compatibility issue

Document or RPC based web services

How to easily consume a web service from PHP

Timer-based event triggers

How to pass enumerated values to a web service

Homegrown consumption of web services

How do I print an HTML document from a web service?

How do I fill a DataSet or a DataTable from a LINQ query resultset ?

ansaurus

tags:

views:

answers:

What is the security advantage of STS in web services?

related questions