ABOUT THE SPEAKER Mr. Lockhart has been a software engineer and manager, consulted extensively for Fortune 500 corporations, been a director of information security and a product security architect. He is currently a principal engineering technologist in the Standards and Architecture Group at BEA Systems Inc., where he represents BEA in a variety of security and management-related standards activities. He has been an active contributor in the OASIS Web Services Security and SAML technical committees. He is also the cochair of the OASIS XACML TC, a member of the OASIS Provisioning TC, Digital Signature Services TC, Web Services Distributed Management, DCML Applications & Services TC, and WS-I Basic Security Profile WG. In the area of Java standards he has been a member of the JSR 115 and JSR 155 expert groups.   SESSION DESCRIPTION The Web Services Interoperability Organization chartered its Basic Security Profile Working Group to develop an interoperability profile involving transport layer security, SOAP message layer security, encryption, signatures, and other security considerations. This session will discuss the interoperability challenges presented by current Web services security standards and the work of the WS-I Basic Security Profile. The session will highlight typical Web services security threats and countermeasures and the related design goals, usage conventions, and conformance testing of the soon-to-be-released Basic Security Profile.