Last week the folks at MSR released a tool, the WSE Policy Advisor, for analysing WS-SecurityPolicy documents. Others have blogged about it but I too wanted to say how cool this tool is. I run it against a very old policy file I had written by hand for the secure version of the WS-GAF Registry service and it told me things that I had never imagined could have caused problems. Here's a screenshot.
The great thing is that the adviser provides comprehensive explanation of the problem. Very cool indeed.