Catching up on Atom news, I learned from a Mark Pilgrim article about the UsernameToken profile for OASIS’s web services security specification. Dj vu! We’ve used a similar home-brewed scheme for inter-application authentication for 4 years ranging from small ASP applications to web services in large J2EE apps.

This site is an archive of several sources. If you'd like to keep up, follow me on Twitter.