Category Archives: reference

Common Errors & Resolutions [ WebSphere Application Server 6.1]


  1. If you happen to get following exception while working on WAS

java.lang.NoClassDefFoundError: org.eclipse.core.runtime.CoreException
at java.lang.J9VMInternals.verifyImpl(Native Method)
at java.lang.J9VMInternals.verify(
at java.lang.J9VMInternals.initialize(

The resoultion for this is :

Adding the file under

\runtimes\base_v61\runtimes\ folder to the web applications library path.


Next Generation Laptops!

Next generation Laptops should have a scanner [which scans pages of the size of a small book (novel) ] and printer which prints pages of the same size!

A facsimile also?

It would be so helpful to have something like this!

What additional features would you love to have on your laptop?

Grade your site

While browsing through the Internet on articles about SEO, I stumbled upon a really useful tool called WebSite Grader .

The report gives you a very concise and at the same time a detailed analysis of your site. It also you gives tips on improving the SEO reach. For this site, the report is as :-

It provides a score that incorporates things like webite traffic, SEO, social popularity and other technical factors. It also provides some basic advice on how the website can be improved from a marketing perspective. (Source: WebSite Grader ).

(There is a spelling mistake on the site – they call it webite traffic! wonder what that is ! … Spell Checkers are the need of the day! huh!)

The tool is a very very useful, in helping you really understand the SEO and improving your site’s performance. And Most Importantly its FREE !

Technorati tags: , , , , ,



SOAP-MSG protected by WS-Security has 3 possible issues in regards to SECURITY TOKEN.

  • Security Token format incompatibility
  • Security Token trust
  • Namespace differences

WS-TRUST addresses these issues by introducing a STS (Secure Token Service).

Example Scenario: –

In order to secure a communication between two parties, the two parties must exchange security credentials (either directly or indirectly). However, each party needs to determine if they can “trust” the asserted credentials of the other party. WS-TRUST specification defines extensions to [WS-Security] that provide:

· Methods for issuing, renewing, and validating security tokens.

· Ways to establish, assess the presence of, and broker trust relationships

The goal of WS-Trust is to enable applications to construct trusted [SOAP] message exchanges. This trust is represented through the exchange and brokering of security tokens. This specification provides a protocol agnostic way to issue, renew, and validate these security tokens.

Implementation Strategy

Web Services Trust Model


1. IBM® Tivoli® Federated Identity Manager provides an implementation of the WS-Trust specification. It acts as a STS.

2. Security Token Generation can be done by configuring WAS


1. Client understands X.509 certificates only.

2. Service understands SAML only.

  1. SOAP Gateway recognizes that it must map to SAML, so it contacts the STS.
  2. The STS sends back the token in the requested format.
  3. The gateway formats and sends the message for the service.

WS-TRUST addresses the security token needs of SOAP messages as

1. Format: An STS is used to exchange tokens into formats understandable by recipients.

2. Trust: The STS issues signed tokens forming the basis of trust for entities with which it has formed a trust relationship.

3. Namespace: The STS will return tokens in appropriate syntax for the recipient.

Discussions welcome. The doc. was created for introductory purposes.

Anything you wish should be added / removed / changed ? plz. let me know.

the doc. can be found here :  WS – TRUST

Technorati tags: , , , , , , , ,

WS – Specifications

While searching for materials on WebService Trust, I came across this presentation, which acts as a good introduction to the concept.

And also the following figure, which summarizes the web services specification stack.

WS-Secure Conversation : How to manage and authenticate message exchanges between parties including security context exchange and establishing and deriving session keys.

WS-Federation : How to manage and broker the trust relationships in a heterogeneous, federated environment including support for federated identities

WS-Authorization : How to manage authorization data and authorization policies.

WS-Policy : The capabilities and constraints of security and other business policies on intermediaries and endpoints (for example, required security tokens, supported encryption algorithms and privacy rules).

WS-Trust : A framework for trust models that enables Web services to securely


WS-Privacy : A model for how Web services and requesters state subject privacy

preferences and organizational privacy practice statements.

WS-Security : How to attach signature encryption headers to SOAP messages. In addition, it describes how to attach security tokens, including binary security tokens such as X.509 certificates and Kerberos tickets (an encryption system developed at MIT), to messages.

Technorati tags: , , , , , , , , ,

Cool Tool !

Have you used Hyperwords ? You don’t know yet ?

Go use it

Very useful .. Have a look at the translating feature..! IT IS COOL

Try out all the features atleast once .

One more reason why you would want to use FIREFOX !

Technorati tags: , , , , , , , , , , , ,