One reason why it's important to sign the messages that get sent to the DTS
WS is, if message not signed and gets tampered with, someone with
intentions to transfer a file from the real source to another destination
where he has access to could happen.
JMS layer should also be made secure. Transport layer between the WS and WN
which uses the JMS layer should be secured as well. The messages that get
sent to the WN can probably use public key infrastructure as well.
Original issue reported on code.google.com by
gerson...@gmail.comon 6 Nov 2009 at 4:43