Common Secure Interoperability Version 2 features
The following Common Secure Interoperability Version 2 (CSIv2) features are available in IBM® WebSphere® Application Server: message layer authentication, identity assertion, and security attribute propagation.
- Identity Assertion
Supports a downstream server in accepting the client identity that is established on an upstream server, without having to authenticate again. The downstream server trusts the upstream server.
![[AIX Solaris HP-UX Linux Windows]](../images/ngdist.svg)
![[IBM i]](../images/ngibmi.svg)
Message Layer Authentication
Authenticates credential information and sends that information across the network so that a receiving server can interpret it.
- Security attribute
propagation
Supports the use of the authorization token to propagate serialized Subject contents and PropagationToken contents with the request. You can propagate these objects using a pure client or a server login that adds custom objects to the Subject. Propagating security attributes prevents downstream logins from having to make user registry calls to look up these attributes.
Propagating security attributes is also useful when the security attributes contain information that is only available at the time of authentication. This information cannot be located using the user registry on downstream servers.