Establish a security context using the WS-SecureConversation standard.

Allow WCF proprietary negotiations to negotiate the service's security.

The algorithm to use for symmetric/asymmetric encryption.

The algorithm drop down list gets its values from the SecurityAlgorithmSuite configuration in WCF.

Indicates whether the SOAP Body be encrypted/signed. The possible values are: None, Sign, and Encrypt And Sign (default).

The order for signing and encrypting. Choose from:

• Sign Before Encrypt

• Sign Before Encrypt-And Encrypt Signature

• Encrypt Before Sign

The WS-Security security version. You can also indicate whether to Require derived keys for the message.

Indicates whether to require derived keys.

The layout for the message header:

• Strict

• Lax

• Lax Timestamp First

• Lax Timestamp Last

The entropy mode for the security key. The possible values are: Client Entropy, Security Entropy, and Combined Entropy.

Indicates whether to require the cancellation of the security context. If you turn off this option, stateful security tokens will be used in the WS-SecureConversation session, if they are enabled.

Includes a timestamp in the header.

Enables the reply to send a serialized signing token.

Instructs the server to send a signature confirmation in the response.

When to include the X.509 certificate:

• Always to Recipient

• Never

• Once

• Always To Initiator

How to reference the certificate:

• Internal

• External

Indicates whether X.509 certificates should require derived keys.

The type of clause used to identify the X.509 key.

• Any

• Thumbprint

• Issuer Serial

• Subject Key Identifier

• Raw Data Key Identifier