5.3 Authentication
Calling a web service can be undertaken with or without formal authentication. The benefit of using formal authentication is that it ensures for both the sender and recipient that the communication is secure.
This part of the AR standard does not, however, define an authentication mechanism for the web service-based communication. Should the sender and recipient require their communication to be authenticated, they are free to use any of the existing web-based authentication methods including, but not limited to:
Basic Auth;
HTTP Digest Authentication;
HTTPS Client Authentication; or
OAUTH.