+ Start a Discussion

Securing web service calls

Hi all.
I have a scenario in which my client is very nervous about allowing web service calls from Appexchange into his LAN.Is there any literature on how Appexchange implements secure web services .Specifically
1) will the client need to install any XML firewalls on his side ?
2) if he decides to use SSL instead what changes will he have to make on his side in the LAN and also in his salesforce.com account ?
3) in general how does appexchange implement Ws Security ?
Thanks a tonne
Is this in realtion to delegated auth? (which is the only Web Services call out of salesforce to the customer today). Have you read the delegated auth docs, i believe there's security notes in there.