
	Home > Ask the SOA Experts > Questions & Answers > A few questions regarding XML security...

Ask The SOA Expert: Questions & Answers

EMAIL THIS

A few questions regarding XML security...

EXPERT RESPONSE FROM: Sean McGrath

		Pose a Question

		Other SOA Categories

		Meet all SOA Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 15 July 2002
I have few questions regarding XML security:
1.What is the relationship between WS-security and SAML? Do you think that eventually these two standards will become one?
2.What is the relationship between XML encryption, XML signature and SAML/WS-security?
Are XML encryption and XML signature a subset of the two other?
3.Can SAML and WS-Security work together?
4.Are there any other important XML security standards out there except XML encryption, XML signature, (XKMS) XML key management specifications, WS-Security, SAML and XACL for access control?

All the questions you ask are good questions to which I (and I suggest I am not alone) do not have the answers. The whole security arena is quite fragmented and volatile at the moment. This is not helped by the fact that security on the Internet at large is an unsolved problem. XML or no XML, there is no consensus as to how to achieve non-repudiation for example - a vital component of transactional processes on the Internet.

The Halcyon days of PKI as a solution to these problems seem long gone - not necessarily for technical reasons. I suspect things will get worse before they get better in the XML security space.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	XML and XML schema
	What's the future of XML?
	SOA pattern of the week (#7): policy centralization
	Try XML-based Extensible Business Reporting Language (XBRL) for accounting reports
	What's new at the W3C
	Ganymede: Modeling tools target SOA, UML
	Data services mashups emerge for SOA
	Making sense of data services mashups
	XML turns 10
	SOA helps save 100-year-old business
	Oracle maps heterogeneous data services strategy for SOA

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

class diagram (SearchSOA.com)

Fast Infoset (FI) (SearchSOA.com)

GeoRSS (SearchSOA.com)

Keyhole Markup Language (SearchSOA.com)

RELAX NG (SearchSOA.com)

state diagram (SearchSOA.com)

Universal Business Language (SearchSOA.com)

Vector Markup Language (SearchSOA.com)

XML infoset (SearchSOA.com)

XML pipeline (SearchSOA.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

SOA Governance White Papers - BPM, EDA, IT Governance

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2001 - 2009, TechTarget \| Read our Privacy Policy