Web Services Standards Overview Dependencies

© innoQ Deutschland GmbH. All Rights Reserved. The poster may also contain references to other company, organisation, brand and product names. These company, organisation, brand and product names are used herein for identification purposes only and may be the trademarks of their respective owners.
Messaging Specifications
SOAP 1.1

SOAP 1.2

Interoperability Business Process Specifications Management Specifications Presentation SOAP Message Transmission Optimization Mechanism

WS-Notification

Issues Business Process Execution Web Service Choreography Management Using Web Management Of Specifications WS-BaseNotification

Metadata
Resource
WS-Choreography Model Web Service Choreography WS-Management

Security
Language for Web Services 1.1 Overview Interface Description Language Services (WSDM-MUWS) Web Services (WSDM-MOWS) AMD, Dell, Intel, Microsoft and Sun WS-Topics
(BPEL4WS) · 1.1 · BEA Systems, IBM, (WSCI) · 1.0 · W3C 1.0 1.0 Microsystems
1.0 · W3C (CDL4WS) · 1.0 · W3C WS-BrokeredNotification
Microsoft, SAP, Sun Microsystems, SAP, BEA Systems OASIS OASIS Published Specification Web Services for Remote
Working Draft Candidate Recommendation
Basic Profile Siebel Systems · OASIS-Standard and Intalio · Note OASIS-Standard OASIS-Standard
Portlets (WSRP) WS-Addressing – Core
1.1
WS-I 왖 Business Process Execution Language for Web Services 왖 WS-Choreography Model Overview defines the format 왖 Web Service Choreography Interface (WSCI) describes 왖 Web Service Choreography Description Language 왖 Web Service Distributed Management: Management Using 왖 Web Service Distributed Management: Management Of 왖 WS-Management describes a general SOAP-based 2.0 WS-Addressing – WSDL Binding
1.1(BPEL4WS) provides a language for the formal and structure of the (SOAP) messages that are exchanged, how Web Service operations can be choreographed in the (CDL4WS) is to specify a declarative, XML based language Web Services (WSDM-MUWS) defines how an IT resource Web Services (WSDM-MOWS) addresses management of protocol for managing systems such as PCs, servers, OASIS
Final Specification specification of business processes and business interaction and the sequence and conditions in which the messages context of a message exchange in which the Web Service that defines from a global viewpoint the common and connected to a network provides manageability interfaces the components that form the network, the Web services devices, Web services and other applications, and other
protocols using Web Services. are exchanged. participates. complementary observable behaviour, where message such that the IT resource can be managed locally and from endpoints, using Web services protocols. manageable entities. Committee Draft WS-Addressing – SOAP Binding
exchanges occur, and when the jointly agreed ordering remote locations using Web services technologies.
왖 Basic Profile – The Basic Profile 1.1 provides rules are satisfied. 왘 Web Services for Remote Portlets (WSRP) defines a WS-Eventing
implementation guidelines for how related set of non- set of interfaces and related semantics which standardize
proprietary Web Service specifications should be used Business Process Execution Business Process Management XML Process Definition interactions with components providing user-facing WS-Enumeration
together for best interoperability. Language for Web Services 2.0 Language (BPML) Language (XPDL) Service Modeling Language markup, including the processing of user interactions with
that markup.
(BPEL4WS) · 2.0 1.1 IBM, BEA, BMC, Cisco, Dell, HP, Intel,
2.0
OASIS, BEA Systems, IBM, Microsoft, SAP,
Siebel Systems · Committee Draft
BPMI.org
Final Draft
Final Microsoft, Sun
Draft Specification
Metadata Specifications
Basic Profile
1.2 왖 Business Process Execution Language for Web Services 왖 Business Process Management Language (BPML) 왖 XML Process Definition Language (XPDL) provides an WS-Policy
WS-I 2.0 (BPEL4WS) provides a language for the formal provides a meta-language for expressing business XML file format that can be used to interchange process 왖 Servcie Modeling Language (SML) is used to model
specification of business processes and business interaction processes and supporting entities. models between tools. complex IT services and systems, including their structure, WS-PolicyAssertions
Working Group Draft

Security
protocols using Web Services. constraints, policies, and best practices.
WS-PolicyAttachment
왖 Basic Profile – The Basic Profile 1.2 builds on Basic Profile

Messaging
1.1 by incorporating Basic Profile 1.1 errata, requirements WS-Discovery
from Simple SOAP Binding Profile 1.0, and adding support
for WS-Addressing and MTOM. WS-MetadataExchange

Universal Description, Discovery and Integration

Web Service Description Language 1.1

Basic Profile
2.0 Web Service Description Language 2.0 Core
WS-I
Working Group Draft Metadata Specifications Reliability Security Specifications Transaction Resource Web Service Description Language 2.0 SOAP Binding

왖 Basic Profile – The Basic Profile 2.0 is an update of WS-I

BP that includes a profile of SOAP 1.2.
WS-Policy WS-PolicyAssertions Specifications WS-Security WS-SecurityPolicy Specifications Specifications Security Specifications
1.1 1.1 WS-Security
1.5 1.1
BEA Systems, IBM, Microsoft,
W3C OASIS WS-Coordination Web Services
IBM, Microsoft, SAP RSA Security, VeriSign WS-Security: SOAP Message Security
Attachments Profile Working Draft
Public Draft WS-ReliableMessaging OASIS-Standard
Public Draft 1.1 Resource Framework (WSRF)
1.0 1.1 OASIS WS-Security: Kerberos Binding
1.2
WS-I 왖 WS-Policy describes the capabilities and constraints of 왖 WS-PolicyAssertions provides an initial set of assertions OASIS 왖 WS-Security is a communications protocol providing a 왖 WS-SecurityPolicy defines how to describe policies related Working Draft OASIS
Final Specification WS-Security: SAML Token Profile

Messaging
Reliability
the policies on intermediaries and endpoints (e.g. business to address some common needs of Web Services Committee Draft means for applying security to Web Services. to various features defined in the WS-Security specification.

Metadata
왖 WS-Coordination describes an extensible framework for providing OASIS-Standard
rules, required security tokens, supported encryption applications.
algorithms, privacy rules). protocols that coordinate the actions of distributed applications. 왖 Web Services Resource Framework (WSRF) defines a family of WS-Security: X.509 Certificate Token Profile
왖 Attachments Profile – The Attachment Profile 1.0 specifications for accessing stateful resources using Web Services.
왖 WS-ReliableMessaging describes a protocol that allows
complements the Basic Profile 1.1 to add support
for interoperable SOAP Messages with attachments-based Web services to communicate reliable in the presence of
WS-Business Activity WS-Security: Username Token Profile
Web Services. software component, system, or network failures. It defines WS-Security: WS-Security: 1.1 WS-BaseFaults (WSRF) WS-SecurityPolicy
a SOAP binding that is required for interoperability. SOAP Message Security Username Token Profile OASIS 1.2
WS-PolicyAttachment WS-Discovery 1.1 1.1 Working Draft OASIS WS-Trust
OASIS OASIS Working Draft
1.2 Microsoft, BEA Systems, Canon, 왖 WS-Business Activity provides the definition of the business activity
Simple SOAP W3C Intel and webMethods WS-Reliable Messaging Public Review Draft Public Review Draft coordination type that is to be used with the extensible coordination WS-Federation
왖 WS-BaseFaults (WSRF) defines a base set of information
Binding Profile W3C Member Submission Draft Policy Assertion (WS-RM Policy) framework described in the WS-Coordination specification. that may appear in fault messages. WS-BaseFaults defines an WS-SecureConversation
1.0 왖 WS-Security: SOAP Message Security describes 왖 WS-Security: Username Token Profile describes how XML schema type for base faults, along with rules for how
1.1
WS-I
왖 WS-PolicyAttachment defines two general-purpose 왖 WS-Discovery defines a multicast discovery protocol for OASIS
enhancements to SOAP messaging to provide message
integrity and confidentiality. Specifically, this specification
a Web Service consumer can supply a Username Token as a
means of identifying the requestor by username, and
WS-Atomic Transaction this base fault type is used and extended by Web Services.
Final Specification 1.1

왖 Simple SOAP Binding Profile – The Simple SOAP Binding

mechanisms for associating policies with the subjects to
which they apply; the policies may be defined as part
of existing metadata about the subject or the policies may
dynamic discovery of services on ad-hoc and managed
networks.
Committee Draft provides support for multiple security token formats, trust
domains, signature formats and encryption technologies.
The token formats and semantics for using these are
optionally using a password (or shared secret, etc.) to
authenticate that identity to the Web Service producer. OASIS
Committee Draft
WS-ServiceGroup (WSRF)
1.2
Reliability Specifications
왖 Web Services ReliableMessaging Policy Assertion

Basic Profile
Transaction
Profile consists of those Basic Profile 1.0 requirements be defined independently and associated through an defined in the associated profile documents.

Metadata
(WS-RM Policy) describes a domain-specific policy assertion OASIS

Security
related to the serialization of the envelope and its external binding to the subject. 왖 WS-Atomic Transaction defines protocols that enable existing WS-ReliableMessaging
representation in the message.
for WS-ReliableMessaging that that can be specified within
transaction processing systems to wrap their proprietary protocols
Working Draft
a policy alternative as defined in WS-Policy Framework.
and interoperate across different hardware and software vendors. WS-Reliability
왖 WS-ServiceGroup (WSRF) defines a means by which Web
WS-MetadataExchange Universal Description, WS-Security: WS-Federation Services and WS-Resources can be aggregated or grouped
1.1 WS-Composite Application together for a domain specific purpose. WS-Reliable Messaging Policy Assertion
BEA Systems, Computer Associates, Discovery and Integration (UDDI) Kerberos Binding 1.0
Framework (WS-CAF)
Basic Security Profile IBM, Microsoft, SAP, Sun Microsystems and 3.0.2 WS-Reliability 1.0 IBM, Microsoft, BEA Systems, WS-ResourceProperties
1.0 · Arjuna Technologies, Fujitsu, IONA,
1.0
WS-I webMethods
Public Draft
OASIS
OASIS-Standard
1.1
OASIS
Microsoft, IBM, OASIS
Working Draft
RSA Security, and VeriSign
Initial Draft Oracle and Sun Microsystems
Committee Specification
1.2
OASIS
Resource Specifications
Board Approval Draft OASIS-Standard Working Draft
왖 WS-MetadataExchange enables a service to provide 왖 Universal Description, Discovery and Integration (UDDI) 왖 WS-Security: Kerberos Binding defines how to encode 왖 WS-Federation describes how to manage and broker the 왖 WS-Composite Application Framework (WS-CAF) is a Web Service Resource Framework
metadata to others through a Web services interface. Given defines a set of services supporting the description Kerberos tickets and attach them to SOAP messages. As trust relationships in a heterogeneous federated collection of three specifications aimed at solving problems 왖 WS-ResourceProperties specifies the means by which the
왖 Basic Security Profile defines the WS-I Basic Security only a reference to a Web service, a user can access a set and discovery of businesses, organizations, and other Web 왖 WS-Reliability is a SOAP-based protocol for exchanging well, it specifies how to add signatures and encryption to the environment including support for federated identities. that arise when multiple Web Services are used in combina- definition of the properties of a WS-Resource may be declared WS-BaseFaults
Profile 1.0, based on a set of non-proprietary Web services tion. It proposes standard, interoperable mechanisms for

Transaction
of WSDL /SOAP operations to retrieve the metadata that services providers, the Web services they make available, SOAP messages with guaranteed delivery, no duplicates, SOAP message, in accordance with WS-Security, which as part of the Web Service interface. The declaration of the

Messaging
specifications, along with clarifications and amendments describes the service. and the technical interfaces which may be used to access managing shared context and ensuring business processes

Security
and guaranteed message ordering. WS-Reliability is uses and references the Kerberos tokens. WS-Resource properties represents a projection of or a view WS-ServiceGroup
to those specifications which promote interoperability. those services. defined as SOAP header extensions and is independent of achieve predictable results and recovery from failure. on the WS-Resource state.
the underlying protocol. This specification contains a WS-ResourceProperties
binding to HTTP. WS-Context (WS-CTX) WS-ResourceLifetime
Web Service Description Web Service Description WS-Security: WS-Trust 1.0 1.2
WS-ResourceLifetime
REL Token Profile Language 2.0 Language 2.0 Core SAML Token Profile BEA Systems, Computer Associates, IBM, Layer 7 Arjuna Technologies, Fujitsu, IONA, Oracle OASIS

This poster is not to be reproduced or transmitted in any form or for any purpose without the express permission of innoQ Deutschland GmbH. · Copyright
Technologies, Microsoft, Netegrity, Oblix, and Sun Microsystems WS-Transfer
1.0 SOAP Binding 2.0 1.1 OpenNetwork, Ping Identity Corporation, Committee Draft
Working Draft
WS-I 2.0 W3C OASIS Reactivity, RSA Security, VeriSign and Westbridge Resource Representation SOAP Header Block (RRSHB)
Working Group Draft Candidate Recommendation Public Review Draft 왖 WS-ResourceLifetime is to standardize the terminology,
W3C · Working Draft Technology · Initial Draft 왖 WS-Context (WS-CTX) is intended as a lightweight mechanism concepts, message exchanges, WSDL and XML needed to
for allowing multiple Web Services to share a common context. monitor the lifetime of, and destroy WS-Resources.
왖 REL Token Profile is based on a non-proprietary
Web services specification, along with clarifications and
왖 Web Service Description Language SOAP Binding
describes the concrete details for using WSDL 2.0 in
conjunction with SOAP 1.1 protocol.
왖 Web Service Description Language 2.0 Core is an XML-
based language for describing Web services and how to
access them. It specifies the location of the service and the
왖 WS-Security: SAML Token Profile defines the use of
Security Assertion Markup Language (SAML) v1.1 assertions
in the context of WSS: SOAP Message Security including
왖 WS-Trust describes a framework for trust models that enables
Web Services to securely interoperate. It uses WS-Security base
mechanisms and defines additional primitives and extensions
WS-Coordination
Additionally, it defines resource properties that may be used
to inspect and monitor the lifetime of a WS-Resource. Management Specifications
amendments to that specification which promote Framework (WS-CF)

Meta
operations (or methods) the service exposes. for the purpose of securing SOAP messages and SOAP for security token exchange to enable the issuance and
interoperability. 1.0 · Arjuna Technologies, Fujitsu, IONA, WS-Transfer WS-Management

Messaging
message exchanges. dissemination of credentials within different trust domains.

Security
Oracle and Sun Microsystems W3C
Management Of Web Services

Resource
Committee Draft W3C Member Submission
Web Service Description WS-Security: X.509 WS-SecureConversation 왖 WS-Coordination Framework (WS-CF) allows the
왖 WS-Transfer describes a general SOAP-based protocol for
Management Using Web Services
SAML Token Profile BEA Systems, Computer Associates, IBM, management and coordination in a Web Services interaction
accessing XML representations of Web service-based resources.
1.0 Language 1.1 Certificate Token Profile Layer 7 Technologies, Microsoft, Netegrity, of a number of activities related to an overall application. Service Modeling Language
WS-I 1.1 1.1 Oblix, OpenNetwork,
Working Group Draft W3C OASIS Ping Identity Corporation, Reactivity, WS-Transaction Resource Representation
Note Public Review Draft RSA Security, VeriSign and Westbridge
Technology ·Public Draft
Management (WS-TXM) SOAP Header Block (RRSHB) Business Process Specifications
1.0 · Arjuna Technologies, Fujitsu, IONA, W3C
왖 SAML Token Profile is based on a non-proprietary 왖 Web Service Description Language 1.1 is an XML-based 왖 WS-Security: X.509 Certificate Token Profile describes 왖 WS-SecureConversation specifies how to manage and Recommendation
Web services specification, along with clarifications and Oracle and Sun Microsystems
language for describing Web services and how to access the use of the X.509 authentication framework with the authenticate message exchanges between parties including Committee Draft Business Process Execution Language for Web Services
amendments to that specification which promote them. It specifies the location of the service and the 왖 Resource Representation SOAP Header Block (RRSHB)
WS-Security: SOAP Message Security specification. security context exchange and establishing and deriving
interoperability. operations (or methods) the service exposes. session keys. 왖 WS-Transaction Management (WS-TXM) defines a core infrastructure complements MTOM by defining mechanisms for Web Service Choreography Description Language
service consisting of a Transaction Service for Web Services. describing and conveying non-XML resource representations

Transaction
Messaging
Reliability
in a SOAP 1.2 message.

Security
Web Service Choreography Interface
Conformance Claim WS-Choreography Model Overview
Attachment Mechanism (CCAM)
1.0 Business Process Management Language
WS-I
Final Specification Business Process Execution Language for Web Serv. 2.0

XML Process Definition Language

왖 Conformance Claim Attachment Mechanism (CCAM)
catalogues mechanisms that can be used to attach WS-I
Profile Conformance Claims to Web services artefacts
(e.g., WSDL descriptions, UDDI registries).
Messaging Specifications SOAP Transaction Specifications

Messaging
Metadata
WS-Business Activity
Reliable Asynchronous 왘 WS-Notification is a 왘 WS-BrokeredNotification 왘 WS-BaseNotification 왘 WS-Eventing defines a 왘 WS-Addressing – Core 왘 SOAP Message
Messaging Profile (RAMP) family of related white defines the interface for standardizes the terminology, baseline set of operations provides transport-neutral SOAP Message Transmission WS-Atomic Transaction
1.0 WS-Notification papers and specifications WS-BrokeredNotification the NotificationBroker. WS-BaseNotification concepts, operations, WSDL
WS-Eventing that allow Web services to WS-Addressing – Core mechanisms to address SOAP Transmission Optimization
Optimization

Security
that define a standard A NotificationBroker is an and XML needed to express provide asynchronous Web services and messages. Mechanism WS-Coordination
WS-I 1.3 1.3 1.3 1.0 1.2
Working Draft OASIS
Web services approach to
notification using a topic- OASIS
intermediary, which, among
other things, allows OASIS
the basic roles involved in
Web services publish and
W3C notifications to interested
parties. W3C
This specification defines
XML elements to identify W3C Mechanism (MTOM) describes an
abstract feature for WS-Composite Application Framework
Public Draft 1.0 · W3C

Reliability
OASIS-Standard based publish/subscribe OASIS-Standard publication of messages OASIS-Standard subscribe for notification Recommendation Web service endpoints and Recommendation optimizing the
왖 Reliable Asynchronous Messaging Profile (RAMP) is a pattern. from entities that are not message exchange. to secure end-to-end Recommendation transmission and/or WS-Transaction Management
profile, in the fashion of the WS-I profiles, that enables, themselves service endpoint identification in wire format of a
among other things, basic B2B integration scenarios using providers. messages. SOAP message. WS-Context
Web services technologies.
왘 WS-Enumeration describes 왘 WS-Topics defines three 왘 WS-Addressing – WSDL 왘 WS-Addressing – SOAP 왘 SOAP is a lightweight,
WS-Enumeration a general SOAP-based
protocol for enumerating WS-Topics
topic expression dialects
that can be used as sub-
WS-Addressing – WSDL Binding defines how the
abstract properties defined
WS-Addressing – Binding provides transport-
neutral mechanisms to SOAP
XML-based protocol for
exchange of information
WS-Coordination Framework
Systinet, Microsoft, Sonic Software, BEA a sequence of XML
1.3
scription expressions in Binding in Web Services Addressing SOAP Binding address Web services and
1.1
in a decentralized,
Systems and elements that is suitable subscribe request messages 1.0 – Core are described using 1.0 messages. distributed environment.
Computer Associates
Public Draft
for traversing logs, message
queues, or other linear
OASIS
OASIS-Standard
and other parts of the
WS-Notification system. W3C WSDL.
W3C
W3C
Note
Presentation Specifications
information models. Candidate Recommendation Recommendation

Reliab.

Secur.

Mess.
Web Services for Remote Portlets

Standards Bodies
The Organization for the Advancement of Structured Information
Standards (OASIS) is a not-for-profit, international consortium
that drives the development, convergence, and adoption of e-business standards. The
consortium produces more Web services standards than any other organization along with stan-
dards for security, e-business, and standardization efforts in the public sector and for applica-
tion-specific markets. Founded in 1993, OASIS has more than 4,000 participants representing
Version 3.0 · February 2007

over 600 organizations and individual members in 100 countries.

The World Wide Web Consortium (W3C) was created in October 1994 to lead the
World Wide Web to its full potential by developing common protocols that promote
its evolution and ensure its interoperability. W3C has over 350 Member organiza-
tions from all over the world and has earned international recognition for its contributions to the
growth of the Web. W3C is designing the infrastructure, and defining the architecture and the core
technologies for Web services. In September 2000, W3C started the XML Protocol Activity to address
XML Specifications
the need for an XML-based protocol for application-to-application messaging. In January 2002, the
Web Services Activity was launched, subsuming the XML Protocol Activity and extending its scope. 왘 XML – Extensible Markup 왘 XML – Extensible Markup 왘 Namespaces in XML 왘 XML Information Set is 왘 XML Schema – XML 왘 XML binary Optimized 왘 Describing Media Content
The Web Services Interoperability Organization (WS-I) is an open industry
Language is a pared-down Language is a pared-down provides a simple method an abstract data set to Schema Definition Language
XML binary Optimized Packaging (XOP) is an XML Describing Media Content of Binary Data in XML
organization chartered to promote Web services interoperability across platforms, XML 1.1 version of SGML, designed
especially for Web
XML 1.0 version of SGML, designed
especially for Web
Namespaces in XML for qualifying element and
attribute names used in XML
XML Information Set provide a consistent set of
definitions for use in other
XML Schema is an XML language for
describing and constraining Packaging (XOP)
language for describing and
constraining the content of of Binary Data in XML
(DMCBDX) specifies how to
indicate the content-type
operating systems and programming languages. The organization’s diverse community of Web 1.1 documents. It allows one to 1.0 documents. It allows one to 1.1 documents by associating 1.0 specifications that need to 1.1 the content of XML XML documents. associated with binary
services leaders helps customers to develop interoperable Web services by providing guidance, W3C W3C W3C W3C W3C 1.0 (DMCBDX)
create own customized tags, create own customized tags, them with namespaces refer to the information documents. element content in an XML
recommended practices and supporting resources. Specifically, WS-I creates, promotes and
Recommendation enabling the definition, Recommendation enabling the definition, Recommendation identified by IRI references. Recommendation in a well-formed XML Working Draft W3C W3C document and to specify, in
supports generic protocols for the interoperable exchange of messages between Web services. Recommendation
transmission, validation, and transmission, validation, and document. Note XML Schema, the expected
The Internet Engineering Task Force (IETF) is a large open international
interpretation of data interpretation of data content-type(s) associated
community of network designers, operators, vendors, and researchers
between applications and between applications and with binary element
concerned with the evolution of the Internet architecture and the smooth between organizations. between organizations. content. innoQ Deutschland GmbH innoQ Schweiz GmbH
operation of the Internet.
Halskestraße 17 Gewerbestrasse 11
D-40880 Ratingen CH-6330 Cham
Phone +49 21 02 77 162 -100 Phone +41 41 743 01 11
info@innoq.com · www.innoq.com