International Journal of Advanced Research in Computer Science & Technology (IJARCST)
A Web service is a software application that can be accessed remotely using XML-based languages. It represents a communication interface offered by the server, through that the clients may require different information. Designing a Web service with security in mind presents developers and architects with an interesting set of challenges. Some are unique to service-oriented architecture and some are similar to the challenges that face enterprise Web application development teams. In this analyzed various guidelines like authentication, authorization, configuration management, exception management, message protection, message validation, message validation, sensitive data and session management before deploying the Web service and each of these guidelines is briefly described.