This diploma thesis gives a security analysis of Web services, considering message and infrastructure security. Several threats to Web services are regarded and analysed and recommendations are given to use Web service technologies in a secure way. Current security standards for Web services, like WS-Security, are introduced and put into context of security requirements and system architectures.
