[go: up one dir, main page]

Atkinson et al., 2002 - Google Patents

Web services security (WS-Security)

Atkinson et al., 2002

View PDF
Document ID
12611958775699632641
Author
Atkinson B
Della-Libera G
Hada S
Hondo M
Hallam-Baker P
Klein J
LaMacchia B
Leach P
Manferdelli J
Maruyama H
Nadalin A
Nagaratnam N
Prafullchandra H
Shewchuk J
Simon D
Publication year
Publication venue
Specification, Microsoft Corporation

External Links

Snippet

WS-Security describes enhancements to SOAP messaging to provide quality of protection through message integrity, message confidentiality, and single message authentication. These mechanisms can be used to accommodate a wide variety of security models and …
Continue reading at cgisecurity.com (PDF) (other versions)

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/083Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using passwords using one-time-passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communication including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority

Similar Documents

Publication Publication Date Title
Atkinson et al. Web services security (WS-Security)
Nordbotten XML and web services security standards
Freeman et al. Server-based certificate validation protocol (SCVP)
Schaad et al. Certificate management over CMS (CMC)
Lawrence et al. Web services security: SOAP message security 1.1 (WS-security 2004)
Housley Using Cryptographic Message Syntax (CMS) to Protect Firmware Packages
Nadalin et al. Web services security
Hada et al. Web Services Security (WS-Security)
Ellison DeviceSecurity: 1 service template
Hashizume et al. Digital Signature with Hashing and XML Signature patterns.
Standard WS-Trust 1.4
Lawrence et al. OASIS Standard Specification, 1 February 2006 6
VeriSign et al. OASIS Standard 200401, March 2004 5
VeriSign et al. Web Services Security
VeriSign et al. Monday, 15 March 2004 5
Alliance OMA Web Services Enabler (OWSER): Core Specifications
Timmel et al. NSA's Cryptographic Message Syntax (CMS) Key Management Attributes
Lawrence et al. OASIS Public Review Draft-28 June 2005 6
Krawczyk et al. Security of Web services
Freeman et al. RFC 5055: Server-Based Certificate Validation Protocol (SCVP)
Lawrence et al. Draft-24 October 2005 6
Lawrence et al. Working Draft-07 November 2005 6
Dridi et al. Managing Security in the World Wide Web: Architecture, Services and Techniques
GRANT Web Services Secure Conversation Language (WS-SecureConversation)
Nadalin Web Services Security: SOAP Message Security Version 1.1. 1 Committee Specification Draft 01 23 March 2011 Specification URIs: This Version