XML.com: XML From the Inside Out

XML.comWebServices.XML.comO'Reilly Networkoreilly.com
  Articles | Weblogs | Newsletter | Safari Bookshelf
advertisement

Resource Guide -> W3C Standards, Security -> Decryption Transform for XML Signature

Decryption Transform for XML Signature

Recommendation

Date: Oct. 3, 2002
Link: http://www.w3.org/TR/xmlenc-decrypt
Source Author or Organization: W3C

Decryption Transform for XML Signature provides a decryption transform mechanism that allows decryption and verification of a signature that has itself been encrypted in an XML document. This could be the case, for example, if two parties to a sale encrypted and signed their information in sequence (the first signature would itself be encrypted).

This document describes the functions and processing rules of the transform and discusses limitations and security concerns, such as the question of whether a signature over encrypted data increases the encrytions vulnerability to plain-text-guessing attacks.

Sponsored By:
Contact Us | Our Mission | Privacy Policy | Advertise With Us | | Submissions Guidelines
Copyright © 2008 O'Reilly Media, Inc. | (707) 827-7000 / (800) 998-9938