How can we ensure security for the processes exposed as web services in BP. I found some way of using digital certificates but no detailed approach provided. Has anyone tried it? Need to ensure that if an external application is invoking the BOT using soap, http protocols and passing xml request then any security issues shouldn't happen.
Note: bot exposed by default have http and not https.. also, any other way to make it more secure ?
Note: bot exposed by default have http and not https.. also, any other way to make it more secure ?