How is security normally implemented when dealing with web services? I know the connection from the client to the server can be sent over HTTPS. However, how do tools like Single Sign-On tools come in to play. Can cookies be passed from the client to the server? Where can I get more information regarding the standardization of a security layer to web services.
Miguel
