High Impact Factor : 4.396 icon | Submit Manuscript Online icon |

WEB SERVICES SECURITY BASED ON XML SIGNATURE & XML ENCRYPTION

Author(s):

JOHN MATHEW , VIT University, Vellore; HARI R, VIT University, Vellore; GOVINDA K, VIT University, Vellore

Keywords:

Web Services, Security, XML Signature, XML encryption, SOAP, SSL.

Abstract

The web services applications were developed to a large extend and the issues regarding web service security are becoming increasingly prominent. Since the XML is a platform independent language, and has high expandability, it is widely used in deploying web service applications. Therefore it is necessary to consider adding some security features in XML document. The security features like access control, digital signature and element-wise encryption cannot be implemented using transport layer security protocol such as Transport Layer Security (TLS) or Secure Socket Layer (SSL). SSL is a reliable and secure protocol which provides end-to-end security sessions between two parties. The XML Encryption is not a replacement to the SSL. But, XML Encryption is used to provide security features that are not addressed by the SSL. For example, with XML Encryption both insecure and secure contents can be exchanged between multiple parties. This paper discusses about the use of XML Encryption and XML Digital Signature as the core of web services security technology. The paper also describes the creation and verification of XML signature and encryption and decryption of XML data. The application of XML encryption and XML digital signature is also illustrated here.

Other Details

Paper ID: IJSRDV2I3047
Published in: Volume : 2, Issue : 3
Publication Date: 01/06/2014
Page(s): 1595-1599

Article Preview

Download Article