Currently, when web service clients exist inside a Jboss deployment (war, ear, etc), they explicitly rely on SSL settings from javax.ssl in the System.Properties() collection. This is global and affects all web service clients in the container. This can be problematic for obvious reasons, different clients calling different endpoints, possibly with different truststores. In addition, for web service clients that rely on HTTP client-cert for authentication, different certificates can be used for each client. We're specifically talking only about transport security here.