<wsp:Policy xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
    <wsp:ExactlyOne>
        <wsp:All>

            <!-- UsernameToken authentication -->
            <sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
                <wsp:Policy>
                    <wsp:ExactlyOne>
                        <wsp:All>
                            <sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
                                <wsp:Policy>
                                    <sp:WssUsernameToken10/>
                                </wsp:Policy>
                            </sp:UsernameToken>
                        </wsp:All>
                    </wsp:ExactlyOne>
                </wsp:Policy>
            </sp:SignedSupportingTokens>

            <!-- Symmetric binding -->
            <sp:SymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
                <wsp:Policy>

                    <sp:ProtectionToken>
                        <wsp:Policy>
                            <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
                                <wsp:Policy>
                                    <sp:WssX509V3Token10/>
                                </wsp:Policy>
                            </sp:X509Token>
                        </wsp:Policy>
                    </sp:ProtectionToken>

                    <!-- Algorithm used to encrypt the data -->
                    <sp:AlgorithmSuite>
                        <wsp:Policy>
                            <sp:Basic128/>
                        </wsp:Policy>
                    </sp:AlgorithmSuite>

                    <!-- Layout of the request -->
                    <sp:Layout>
                        <wsp:Policy>
                            <sp:Strict/>
                        </wsp:Policy>
                    </sp:Layout>

                    <!-- Must include timestamp -->
                    <sp:IncludeTimestamp/>

                    <sp:OnlySignEntireHeadersAndBody/>

                </wsp:Policy>
            </sp:SymmetricBinding>

            <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
                <wsp:Policy>
                    <sp:MustSupportRefEncryptedKey/>
                    <sp:MustSupportRefIssuerSerial/>
                    <sp:MustSupportRefKeyIdentifier/>
                    <sp:MustSupportRefThumbprint/>
                </wsp:Policy>
            </sp:Wss11>

            <sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
                <sp:Body/>
            </sp:EncryptedParts>

            <sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
                <sp:Body/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="ReplyTo"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="To"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="From"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="MessageID"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="FaultTo"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="Action"/>
                <sp:Header Namespace="http://www.w3.org/2005/08/addressing" Name="RelatesTo"/>
                <sp:Header Namespace="http://schemas.xmlsoap.org/ws/2005/02/rm" Name="AckRequested"/>
                <sp:Header Namespace="http://schemas.xmlsoap.org/ws/2005/02/rm" Name="Sequence"/>
                <sp:Header Namespace="http://schemas.xmlsoap.org/ws/2005/02/rm" Name="SequenceAcknowledgement"/>
            </sp:SignedParts>

        </wsp:All>
    </wsp:ExactlyOne>
</wsp:Policy>