UsernameToken Authentication

The policy uses a TransportBinding and requires a SignedSupportingToken which
is a UsernameToken and the inclusion of a TimeStamp.

Note that Rampart does not enforce the use of HTTPS transport and that
{http://ws.apache.org/rampart/policy}RampartConfig assertion provides
additional information required to secure the message.