REST is hot right now. However it does not give you good access to security standards. What are you to do? Well one thing is for sure. Don't roll your own security code. That will take too long, and it will be full of holes.I just read up one guy proposing RESTful apps to use security assertion markup language (SAML). This standard is an accepted way to do authentication. It is an alternative to WS-*.
They say SAML has a rich syntax. I can't tell for sure yet. I have only just read about. However it sounds like something to look into if you are going RESTful.
