I have a service for account creation. I'm thinking of using web-services primarily because there will be multiple clients using it. 1. How do I protect the web-service from public use (i.e "internal" web-service)? 2. How will a publicly availible web-application use this type of web-service? Any thoughts/ideas will be very much appreciated.