Overview
WS-Trust defines a number of new elements, concepts and artifacts in support of that goal, including:
- the concept of a Security Token Service (STS) - a web service that issues security tokens as defined in the WS-Security specification.
- the formats of the messages used to request security tokens and the responses to those messages.
- mechanisms for key exchange
WS-Trust is then implemented within Web services libraries, provided by vendors or by open source collaborative efforts. Web services frameworks that implement the WS-Trust protocols for token request include: Microsoft's Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), Sun's WSIT framework, Apache's Rampart (part of axis2), and others. In addition, vendors or other groups may deliver products that act as a Security Token Service, or STS. Microsoft's Access Control Services is one such service, available online today. Ping Identity Corporation also markets an STS. Microsoft's ADFS 2.0 server also provides implementation of an STS.
Read more about this topic: WS-Trust