A service-oriented architecture (SOA) enables loosely coupled applications to be assembled from a set of internal and external services that are distributed over a connected infrastructure. This distributed nature makes addressing security concerns a critical success factor, paired with the primary concern to establish an interoperable framework that enables security for services, applications, and users in a trusted environment and complies with established corporate policies.