Moreover, the current WS-Security
standard induces crucial additional vulnerabilities threatening the availability of certain web service
implementations. First, this paper introduces an attack-generating tool to test and confirm previously
reported vulnerabilities