Get a leg up on XML security development with security toolkits

Those seeking to include various aspects of XML Security infrastructure in their environments may quickly find themselves puzzled by where to go and how to gain access to such technology for runtime use. But the availability of two different developer toolkits for Java means that at least some developers can turn to one or the other (assuming their development plans permit them to use Java-based technologies, that is) for reasonably ready access to a usable set of tools for this purpose. These two toolkits are as follows:

Both of these offerings promise to make developers' jobs easier when it comes to integrating XML-based security capabilities into their systems and applications.

More about Entrust Authority

The Entrust offering comes from a leading company in the information security business, which brought one of the first commercial PKI (public key infrastructure) offerings to market in 1994. Entrust Authority is in fact the product family to which the security toolkit covered here belongs. What this toolkit brings to developers is an ability to incorporate strong security features, including encryption and digital signatures into their code. Among other features and benefits, this security toolkit includes the following capabilities:

This environment works with JDK 1.3.1 or later, J2DSK 1.3 or later, or with Javasoft's Java Plugin 1.3 or later to provide support for older IE or Netscape versions (otherwise, Netscape 6.2 or IE 5.5 or newer versions are required). Works with all platforms for which Sun Java Development kit

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT XML Developer Use the soapUI software tool to tame WSDL WSDL 2.0, new messaging for Web services Using RELAX NG For data integration Efficient XML Interchange tackles data verbosity XML to DDL imports, synchronizes database schemata The basics of MathML 3.0 Migrating to XSLT 2.0 What's up with XML 2.0? Say hello to XPath 2.0 Podcasting software covers many bases

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

s are available, as well as for numerous IBM and HP-UX Java Development kits (see specifications for details). The Entrust Authority Security Manager software (release 6.x or 7.x) is also required to support this developer toolkit, however.

More About IBM's XML Security Suite

The IBM XML Security provides support for security features that include digital signature, encryption and access control within XML documents, above and beyond what transport-level security protocols such as SSL (Secure Sockets Layer) can deliver. To that end, the suite supports three technologies:

Requirements are basic and straight forward. The code works for clients running Windows 95, 98, NT, 2003, XP or Linux. Developers need to work with JDK 1.1 or 1.2 and the Apache Xerces-J environments (further download and installation instructions are readily available). No other supporting software is needed or required, so this implementation may be more attractive to developers who might not otherwise need to license Entrust Authority offerings.

Either of these toolkits makes it easier for developers to draw on standard XML security services and capabilities, and promises to up the security ante considerably in documents or applications that use them. Thus, both are worth looking into.

About the author
Ed Tittel is a full-time writer and trainer whose interests include XML and development topics, along with IT Certification and information security topics. E-mail Ed with comments, questions, or suggested topics or tools for review.