«

This is hopefully a basic web service security question.
I have two separate systems (system A and system B) which have their
own username/password based authentication schemes. Being fairly new to
the WS world I'd like to ask what are the most simple or powerful
techniques for accomplishing the following;
1. Authenticating web service requests from system A to system B so
that B can be sure they originated from A.
2. Authenticating web service requests on behalf of specific users of
system A by system B so that appropriate access capabilities can be
enforced.
I couldn't find a more appropriate newsgroup for asking this generic
question about web service authentication. Any pointers to more
specific newsgroups appreciated,
Thanks
Stevie