This document raises information security issues that should be considered by justice and public safety managers who are deploying justice XML-based systems for the exchange of justice and public safety information. These concerns are not meant to discourage continued development of these standards, but rather to assist justice managers, technologists, and practitioners in understanding and managing risk. The first sections provide background by presenting a working definition for Web services and an overview of standards. This discussion is followed by a summary of security concerns and approaches to mitigate those concerns. Finally, we describe the security practices employed by the Southwest Alabama Integrated Criminal-Justice System (SAICS) to provide an operational example.