Permits of the WSO2 Security and Identity Gateway have different throttling levels with a throttling policy language, which is an extension of WS-Policy available in the Solution.

The WSO2 Security and Identity Gateway fulfils the common security requirements of remotely controlling access to the deployed services of an SOA. Access controls can be implemented for a particular IP address range, for a particular domain, according to the entity that is being controlled so that one entity is completely blocked, while another is allowed to access a particular service a limited number of times during a certain period of time, and so on.