With the development of data transmission and Web Service technology, XML is widely used in all kinds of information transformation. So, Security in XML data transmission is very important, nowadays, in most of the sensitive issue like Bank transaction, online transaction, e-commerce, Diplomatic data etc. For secure XML Transaction, several methods are proposed. We will study the technologies of secure XML transmission which propose the XML's security encryption based on the importance and sensitivity of data.

Xml base secured data encryption and transmission technology

The extensible markup language (XML) is a promising standard for describing semi-structured information and contents on the Internet. When XML comes to be a widespread data encoding format for Web applications, safeguarding the accuracy of the information represented in XML documents will be indispensable. In this paper, we propose a provisional authorization model that provides XML with sophisticated access control mechanism. The well-recognized need for such a system has only recently been addressed. Based on this authorization model, we present an XML access control language (XACL) that integrates security features such as authorization, non-repudiation, confidentiality, and an audit trail for XML documents. We describe our implementation, which can be used as an extension of a Web server for e-Business applications.

XML document security based on provisional authorization

The eXtensible Markup Language (XML) has been widely adopted for information exchange across various networks due to flexibility providing common syntax for messaging systems. Excessive use of XML as a communication medium created an aligned interest in the level of security provided for those XML-Based systems. Many security concerns have been tackled by the World Wide Consortium (W3C) creating the "XML Encryption Syntax and Processing" Recommendation [4]. This study presents a new architecture to handle received XML messages from various systems, on one hand suggested architecture is focused on classifying received XML messages (sensitive and non-sensitive) data to define which parts of the XML document to be encrypted and which to be forwarded to another module in suggested system to handle message composition, On the other hand the architecture is focused on securing XML messages by encrypting flagged XML parts each with different type of encryption depending on data sensitivity and importance level defined, this stage uses an approach based on W3C "XML Encryption Syntax and Processing" Recommendation. As a result, study aims to improve both the performance of XML encryption process and bulk message handling to achieve data cleansing efficiently.

/pdf/advanced-xml-security-framework-for-building-secure-xml-reh06hmenv.pdf

background

Advanced XML Security: Framework for Building Secure XML Management System (SXMS)

Based on the analysis of XML security for data transmission in network, through the design and implementation of XML data exchange security program, this paper presents a set of effective XML-based security data exchange solution in university information platform. The solution can maintain confidentiality, integrity and non-repudiation in the entire process of data storage or network transmission.

Xml base secured data encryption and transmission technology

References

XML document security based on provisional authorization

Advanced XML Security: Framework for Building Secure XML Management System (SXMS)

XML-based information security technology study

Related Papers (5)

Survey on XML encryption

Research and implementation of encryption method based on XML

Securing confidential data in XML using custom level encryption

An application program interface for securing XML documents

Persistent Encryption with XML Encryption