That's good information. Do you have any special security integrated into your web services architecture, such as an authentication technique? Do you make calls to Web Services over an "https" connection?
I've been reading about proposed standards (i.e. Microsoft/IBM "WS-Security") but haven't seen any real examples. The WS-Security involves a kind of authentication for users of the web service, who are then issued an identifying token that's passed in with subsequent SOAP headers to identify the user of the Web Service.