Thanks for your suggestion.
The requirement is , after the Creditcard number is returned from the Webservice it need to encrypted and at anytime if we are again invoking another webservice which requires this creditcard number to be in decrypted format , we should be able to do decryption in BPEL before invoking.
I went through the example which is posted in SOA Sample website . But seems that doesn't meet my requirement.
Can we attach a policy (which do encryption) which is only for the response returned from the Web Service ?
some useful links about this topic are:
Hope this hels,