Java and XML Security

by Todd Sundsted

Be the first to comment | I like it!

on this topic

September 27, 2001, 11:00 PM — ITworld —

XML Signature and XML Encryption
XML Signature specifies an XML-based language for representing digital
signatures. XML Signature provides the three essential components of
security: authentication, message integrity, and non-repudiation. An
XML Signature can be generated for any type of digital content
including XML documents. XML Encryption specifies how to encrypt and
decrypt XML documents and portions of XML documents.

Implementations of both of these technologies are available from:

alphaWorks XML Security Suite
http://www.alphaworks.ibm.com/tech/xmlsecuritysuite/

VeriSign Java XKMS and XML Signature SDK
http://www.xmltrustcenter.org/xkms/developer/

Entrust Authority Toolkit for Java
https://www.entrust.com/developer/java/

IAIK XML Signature Library (IXSIL)
http://jcewww.iaik.at/products/ixsil/

XKMS
XKMS (XML Key Management Specification) defines messages and protocols
for registering and distributing public keys with XML. It is built upon
the XML Signature and XML Encryption specifications. I am only aware of
VeriSign's implementation though:

VeriSign Java XKMS and XML Signature SDK
http://www.xmltrustcenter.org/xkms/developer/

SAML
SAML (Security Assertion Markup Language) enables applications
conducting business transactions to share authentication and
authorization information. Netegrity (http://www.netegrity.com)
recently announced the availability of a free SAML implementation for
Java called JSAML that, according to their press release, will be
available in October. I am only aware of this SAML implementation.

Read more about news in ITworld's News section

» posted by ITworld staff

ITworld

I like it!

Email
Print
Share
- Slashdot
- Digg
- Stumble
- Reddit
- Newsvine

Post a comment

Your name: *

E-mail: *

The content of this field is kept private and will not be shown publicly.

Subject:

Comment: *

Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
Lines and paragraphs break automatically.

peer-to-peer

Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers

Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal

Tom Henderson
Top Ten General Operating Systems Rants

pasmith
PS3 motion controller delayed; goes up against Project Natal

sjvn
Neolithic Windows security hole alive and well in Windows 7

claird
Perl source code comparison makes for good reading

mikelgan
Cell phones don't create stress or interrupt much

Sandra Henry-Stocker
How to: The Unix Interview

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

The Daily Tip

Quick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

*E-mail address:

*Verify E-mail:

*Job Title:

*Industry:

*Company Size:

*Country

* State:

I would like to receive offers via email from ITworld partners.

By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.

view all newsletters »

	Friends With Benefits: A Social Media Marketing Handbook Tips, tricks, and real-world case studies to help you increase your online visibility.Enter now!
	Ubuntu Unleashed 2010 Edition Detailed information on installing, using, and administering Ubuntu. Enter now!
	VMware vSphere 4 Implementation Best practices for deploying the vSphere product in real-world enterprise environments.Enter now!