Secure XML: The New Syntax for Signatures and Encryption

Front Cover
Addison-Wesley Professional, 2003 - Computers - 532 pages
-- Authoritative - author is well-known as the chair of the joint IETF/W3C working group setting the standards-- Comprehensive - covers XML encryption, confidentiality, authentication, digital signatures, message authentication, and cryptographic algorithms-- Timely - will be one of the first books available on XML SecurityAs XML is more broadly used in both web sites and business applications, the need to insure security of XML based applications grows. Most books on XML have at best a chapter devoted to security issues, and there is only one other book currently on the market devoted exclusively to XML Security. This book will show developers all they need to know about how to use XML Digital Signatures to protect the integrity and authenticity of data, and how to use XML Encryption to control its confidentiality. The lead author is at the center of the IETF and W3C working groups formalizing the standards, so there is no one better qualified to write about them. The book will also appeal to networking/security professionals who need to start dealing with the impact of XML on network security.
 

What people are saying - Write a review

We haven't found any reviews in the usual places.

Contents

Introduction
1
XML Basics
33
Canonicalization and Authentication
167
Keying
293
Encryption
341
Algorithms
381
Appendixes
435
References and Acronyms
495
Index
507
Back Cover
533
Copyright

Common terms and phrases

About the author (2003)

Donald E. Eastlake III, is the co-chairman of the joint IETF/W3C XML Digital Signature working group, a member of the W3C Encryption and W3C XML Key Management System working groups, and co-author of the XML Digital Signature, XML Encryption, and XML Exclusive Canonicalization standards. He has been deeply involved in network and financial transaction security for many years with IBM, CyberCash, and Digital Equipment Corporation, and is now at Motorola as a Distinguished Member of Technical Staff. He was the principal author of the current IETF Domain Name System security standard and is chairman of the e-Commerce oriented IETF TRADE working group. He has four patents.

Earlier efforts in his three decades of work with computer technology include contributions to the Greenblatt Chess Program at MIT, the first computer program to plan chess in tournament competition and be granted a chess rating, and project management of the Data Computer at Computer Corporation of America, the first general purpose terabit data management system on the Internet.

Kitty Niles is a freelance technical writer. She was previously a technical writer and online help designer and developer at Digital Equipment Corporation and Process Software Corporation. Her more than two decades of involvement with computer technology have included numerous Digital and Society of Technical Communications documentation awards. Her background includes paleobotany research, medical and environmental research, teaching, and technical illustrating. She is a member of the New York Academy of Sciences (NYAS), the HTML Writers Guild, the Society of Technical Communications, and assorted environmental and conservation groups.



0201756056AB05292002

Bibliographic information