on 02-19-2008 12:28 PM
Hi Friends,
I understand that the above 3 techniques are used for secure message transmission, but I am not able to understand the differences between these 3 techniques.
Could you brief the above and make clear for me?
Kind Regards,
Jeg P.
Pls check this link which gives you details about the difference
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Swarup,
From the definition, I am not able to understand the difference. All techniques are look like same. Could you make clear for these ?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Digital Signature - if a message is digitally signed, the receiver is able to identify the sender and assure its identity. Also, it will be able to know whether the data was exactly like sent by the original sender or if it was changed/corrupted during the transport;
Encryption - the data is encrypted, meaning that only the proper receiver is able to read it. If someone intercepts it during the transport, they won't be able to understand it.
WS-Security - usage of these and some other techniques to increase security level for web services.
Regards,
Henrique.
Hi
WS Security is a standard for securing SOAP messages. By using WS Security, you protect the SOAP messages that are exchanged between the Web service provider and the Web service client with digital XML signatures, XML encryption, time stamps, and security tokens.
XML Signatures
Digital signatures are added to a SOAP document in order to ensure the integrity and the authenticity of the message.
XML Encryption
Encryption is used to protect elements that are sent as part of the SOAP message. This protects the confidentiality of the message and prevents the undesired disclosure of the sent data.
Refer
www.isecpartners.com/files/XMLDSIG_Command_Injection.pdf
http://help.sap.com/saphelp_nwpi71/helpdata/en/47/01061fec9e5515e10000000a1553f6/frameset.htm
www.devshed.com/c/a/Security/Safeguarding-the-Identity-and-Integrity-of-XML-Messages/ -
Thanks
Swarup
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I hope the following pdf document will help you regarding your query.
http://www.isecpartners.com/files/XMLDSIG_Command_Injection.pdf
regards
mahesh.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
79 | |
9 | |
9 | |
7 | |
7 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.