Security specification of WS-SecureConversation

The usage of the internet consists of several fields e.g. business, social, government, education, and so on. In business, the internet is needed to connect producers with consumers. Consumers do not need to come to a place to buy some goods. Transactions can be done at home using an internet connection. One of the usage of Internet technology is a web service. The emerging of this technology as there is paradigm of virtual enterprise. This indicates that the company sees the fact in the performance of all its business processes externally but in practice it does not happen. So, not all business processes run in a company but most business processes are also executed in its partner. The usage of the web service also allows the emergence of the threat of another party. This threat can be the vulnerability of confidentiality and integrity of data. One of way to handle is to use WS-Security framework. This framework is a standard web service security based-on XML. However, it is lacking in a lot of message exchange and occurs in specified time. This deficiency can be overcome by using WS-SecureConversation framework. The testing resulted by message exchange for 100 times shows that process time of WS-SecureConversation is lower than WS-Security usage. The data integrity aspect is done by request message modification to result an error message. The data availability aspect is done by invalid accessing to available services, this occurrence emerges denied system to serve service request so data availability are valid user only.