Sign In/My Account | View Cart  
advertisement

Article:
Secure RSS Syndication
Subject: reuse
Date: 2005-10-14 06:47:23
From: Bill Burcham
Did you consider using the XML Encryption standard (http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/) instead of "rolling your own"? IBM's XML Security Suite (http://www.alphaworks.ibm.com/tech/xmlsecuritysuite) implements the standard and is RAND (http://www.w3.org/TR/2002/NOTE-patent-practice-20020124#def-RAND) I believe.


This standard is being used in various secure XML communications standards such as ebXML Messaging and WS-Security (SOAP security).


Proper application of the standard would make available to you a broader choice of crytpo algorithms and would somewhat mitigate your "I am not a cryptanalyst" concern.

Previous Message Previous Message   Next Message Next Message

Titles Only Full Threads Newest First
  • reuse
    2005-10-14 06:55:39 Joe Gregorio [Reply]

    Bill,
    The encrypted content was stored inside the XHTML. If I were to put an xenc:CipherData inside the XHTML that would make the XHTML invalid.

Sponsored By: