One way to do this is to provide an additional Web service layer that filters out forbidden Web service requests and supplies logging and security constraints.