Custom Policy Assertions

A custom policy assertion is a set of requirements that are defined by the custom policy assertion's developer for a SOAP message exchange between a client and a Web service. For example, a custom policy assertion might specify the security token types that are used to digitally sign or encrypt SOAP messages between the client and Web service.

In This Section

• How to: Create a Custom Policy Assertion that does not Secure SOAP Messages
  Details how to create a custom policy assertion that does not secure SOAP messages.

• How to: Create a Custom Policy Assertion that Secures SOAP Messages
  Details how to create a custom policy assertion that secures SOAP messages.

• How to: Secure an Application Using a Custom Policy Assertion
  Details how to use a custom policy assertion to secure a SOAP message exchange between a client and Web service.

• Using Discrete Security Operations in a Policy Assertion
  Details how to use discrete security operations, such as digitally signing a SOAP message in a policy assertion.