SOAP is an XML-based protocol for accessing web services over HTTP.

SOAP was originally known as the Simple Object Access Protocol. SOAP is a protocol on how web services talk with one another. Specifically, SOAP is a web-based application for the guided creation of a security policy document specifically tailored for NGOs. SOAP provides a basic document structure, boilerplate content, and an interactive workflow designed for a non-technical user. The output is a document in several formats that can be shared and/or hosted elsewhere.

The objective of the assessment is to understand the threat model and identify security vulnerabilities that could introduce risk to any organization using it.

The full assessment and summary of findings can be found below.

SOAP Security Assessment