This diagram shows a client with a client-side OWSM policy sending a message to a front-end proxy that contains a non-security OWSM policy or no policy. The front-end proxy performs no security processing. The front-end proxy then forwards the message with security headers to two different local proxies: one that contains no OWSM policy, and one that contains an OWSM service policy.