XML Security Stack

Figure 7-1 shows how XML Digital Signature API (JSR 105) interacts with security components today and how it will interact with other security components, including XML Digital Encryption API (JSR 106), in future releases.

Java WSDP v1.4 Security Components

Figure 7-1 Java WSDP Security Components

XWSS calls Apache XML-Security directly today; in future releases, it should be able to call other pluggable security providers. The Apache XML-Security provider and the Sun JCA Provider are both pluggable components. Since JSR 105 is final today, the JSR 105 layer is standard now; the JSR 106 layer will be standard after that JSR becomes final.