Hi Oskar,
We are not really exposing jboss to the public since we are talking server to server webservices with firewalls, ipadress checks and maybe even VPN tunnel.
Yes, you could use Apache as a proxy but then you will need to add the different certificates to Apache and configure Apache so it uses the correct certificate against different urls.
Our solution in this case was to use Apache CXF, that is much more mature then jax-ws.