Timestamps
uUse
can limit exposure to variety of different attacks.
ØIf predefined amount of time has passed between creation
of web service call and its
receipt, something malicious may have occurred.
ØIf the original message contained a timestamp, the next
time that the message was
transmitted it would most likely be expired and rejected.
ØWeb service could also log the timestamp of each request
to prevent any requests
with the same timestamp for a particular user.
uAdditional
overhead of requiring both sender and receiver to synchronize clocks in order to limit incorrect
rejections.
ØHindrance has been lessened in recent years as more and
more systems automatically
synchronize their clocks to centralized servers.
