The Lightweight Web Services Security Profile [MS-LWSSP] specifies restrictions on a set of Web services specifications and provides clarifications that promote interoperability when building secure Web services. [MS-LWSSP] and the profiled Web services specifications are used by both clients and servers to implement client authentication.
Sections 1.8, 2, and 3 of this specification are normative and can contain the terms MAY, SHOULD, MUST, MUST NOT, and SHOULD NOT as defined in [RFC2119]. Sections 1.5 and 1.9 are also normative but do not contain those terms. All other sections and examples in this specification are informative.