Web service Security
February 11, 2012
Alwin Wright – Phoenix, AZ
123Triad: Web Design & SEO Company
Web service Security
Security for web services at this point in time has become a hot topic. This is because it is not based on human to program interaction but that of program-to-program. Therefore, it is of utmost importance for security of web services to address vital topics like authentication, data integrity, privacy and access control. These days Secure Sockets Layer (SSL) is the mostly employed security scheme. Even though, it has limitations when it comes to web services The technology of the web service has been steadily shifting towards various security schemes of the web service that are XML-based.
The various web service services are discussed below.
XML Digital Signature
Its specifications were as a result of a joint venture between IETF and W3C. These signatures provide message authentication, integrity and signer authentication services for any type of data, regardless of where it is located i.e. whether it is located within the XML which includes the XML signature or it is located elsewhere.
XML Encryption
The xml encryption specification of the W3C addresses an issue regarding data confidentiality by employing encryption techniques. Actually, encrypted data is kind of wrapped in XML tags that are defined by this XML Encryption specification.
XKMS
This stands for XML Key Management Specification. It comprises two parts; the first one is X-KISS (XML Key Registration Service Specification) and the second one is X-KRSS (XML Key Registration Service Specification). The X-KISS defines the protocol for a Trust service which resolves the information of the public key which is contained in SIGelements of XML. This protocol enables a client dealing with such a service to delegate all or part of the tasks that are required to process the elements. X-KRSS is a web service protocol which accepts the registration of the information of the public key. Once the public key is registered, it may be used together with other web services even X-KISS.
SAML
This stands for secure assertion markup language. It is a frame work based on XML used for communicating user entitlement, attribute information and authentication. As we can infer from the name, this protocol enables business entities to make assertions which regard the attributes, entitlements and identity of a subject to other entities. Such an entity may be another enterprise application or partner company. The OASIS Security Services Technical Committee is responsible for enhancing, maintaining and defining the specifications which define SAML.
WS-Security
This stands for Web Services Security. Security Assertion Markup Language (SAML) from OASIS is the one that provides a means that enables partner applications to share user authorization and authentication information. This is typically the SSO (single sign-on) feature that is offered by most vendors in their e-commerce products. When there is no any standard protocol on sharing authentication information, cookies are usually employed in HTTP communication. They serve to implement SSO. With the coming of SAML, the same data can be wrapped in XML in a way that is standard. This serves to keep cookies at bay and ensure interoperable SSO.
ebXML Message Service.
This is a schema for message enveloping and header document. It is used to transfer ebXML messages over a protocol of communications like SMTP or HTTP. It also applies to the behavior which soft wares show of sending and receiving messages of ebXML.
123Triad webdesign offers affordable custom website design. Our full service website design company only hires certified website designers. Please contact us today on 1-800-720-0816 for your next web site design project.
Related posts:
Servicing Nationwide
Call 1-800-720-0816 For your Free Custom Quote