Add the information for JBossWS Authentication captured as part of the Common Criteria EAP 5.1 evaluation (in the CC guide) and port to the Security Guide.

I think we should have chapters in this guide relating to each EAP product, but that is a side issue.