English
Related papers

Related papers: Countering Wrapping Attack on XML Signature in SOA…

200 papers

Web Services are web-based applications made available for web users or remote Web-based programs. In order to promote interoperability, they publish their interfaces in the so-called WSDL file and allow remote call over the network.…

Cryptography and Security · Computer Science 2008-12-23 Azzedine Benameur , Faisal Abdul Kadir , Serge Fenet

This paper is aimed to evaluate the importance of XML Signature and XML Encryption in Web Service Security. In today's business scenario, organizations are investing huge amount of resources in Web Services. Web Service Transactions are…

Cryptography and Security · Computer Science 2013-03-06 RA. K. Saravanaguru , George Abraham , Krishnakumar Ventakasubramanian , Kiransinh Borasia

An XML web service is, to a first approximation, an RPC service in which requests and responses are encoded in XML as SOAP envelopes, and transported over HTTP. We consider the problem of authenticating requests and responses at the…

Cryptography and Security · Computer Science 2007-05-23 Andrew D. Gordon , Riccardo Pucella

SAML assertions are becoming popular method for passing authentication and authorisation information between identity providers and consumers using various single sign-on protocols. However their practical security strongly depends on…

Cryptography and Security · Computer Science 2014-01-30 Pawel Krawczyk

XML Signature Wrapping (XSW) has been a relevant threat to web services for 15 years until today. Using the Personal Health Record (PHR), which is currently under development in Germany, we investigate a current SOAP-based web services…

Cryptography and Security · Computer Science 2021-06-22 Paul Höller , Alexander Krumeich , Luigi Lo Iacono

Data transfer and staging services are common components in Grid-based, or more generally, in service-oriented applications. Security mechanisms play a central role in such services, especially when they are deployed in sensitive…

Distributed, Parallel, and Cluster Computing · Computer Science 2009-04-01 G. A. Kohring , L. Lo Iacono

Social authentication has been suggested as a usable authentication ceremony to replace manual key authentication in messaging applications. Using social authentication, chat partners authenticate their peers using digital identities…

Cryptography and Security · Computer Science 2024-02-06 Felix Linker , David Basin

XML-based communication governs most of today's systems communication, due to its capability of representing complex structural and hierarchical data. However, XML document structure is considered a huge and bulky data that can be reduced…

Distributed, Parallel, and Cluster Computing · Computer Science 2014-10-10 Bishoy Moussa , Mahmoud Mostafa , Mahmoud El-Khouly

The world is rapidly adopting RESTful web services for most of its tasks. The once popular SOAP-based web services are fast losing ground owing to this. RESTful web services are light weight services without strict message formats. RESTful…

Networking and Internet Architecture · Computer Science 2016-09-21 Gyan Prakash Tiwary , Abhishek Srivastava

Development of information technology, especially in the field of computer network allows the exchange of information faster and more complex and the data that is exchanged can vary. Security of data on communication in the network is a…

Cryptography and Security · Computer Science 2015-08-25 Heru Pranata , Leon Andretti Abdillah , Usman Ependi

Web services security specifications are typically expressed as a mixture of XML schemas, example messages, and narrative explanations. We propose a new specification language for writing complementary machine-checkable descriptions of…

Cryptography and Security · Computer Science 2009-09-29 Karthikeyan Bhargavan , Cedric Fournet , Andrew D. Gordon , Riccardo Pucella

Now a days, a new family of web applications open applications, are emerging (e.g., Social Networking, News and Blogging). Generally, these open applications are non-confidential. The security needs of these applications are only…

Cryptography and Security · Computer Science 2013-06-10 Pankaj Choudhary , Rajendra Aaseri , Nirmal Roberts

Companies have increasingly turned to application service providers (ASPs) or Software as a Service (SaaS) vendors to offer specialized web-based services that will cut costs and provide specific and focused applications to users. The…

Cryptography and Security · Computer Science 2012-08-27 Kelly D. Lewis andjames E. Lewis

Due to resource restricted sensor nodes, it is important to minimize the amount of data transmission among sensor networks. To reduce the amount of sending data, an aggregation approach can be applied along the path from sensors to the…

Distributed, Parallel, and Cluster Computing · Computer Science 2016-08-23 Jacques M. Bahi , Christophe Guyeux , Abdallah Makhoul

In recent years, Session Initiation Protocol (SIP) has become widely used in current internet protocols. It is a text-based protocol much like Hyper Text Transport Protocol (HTTP) and Simple Mail Transport Protocol (SMTP). SIP is a strong…

Networking and Internet Architecture · Computer Science 2012-05-03 Hassan Keshavarz , Mohammad Reza Jabbarpour Sattari , Rafidah Md Noor

Secure communications are playing increasing roles in society, particularly in finance, journalism, and military projects. Current methods of securing e-mail and similar messaging methods rely on encryption of the message body, but the…

Cryptography and Security · Computer Science 2014-11-25 H. Bjorgvinsdottir , P. M. Bentley

Common problems affecting modern email usage include spam, lack of sender verification, lack of built-in security and lack of message integrity. This paper looks at how we can utilise the extensible messaging and presence protocol also…

Networking and Internet Architecture · Computer Science 2018-02-27 Martin A. Coleman

Cloud-based services have become part of our day-to-day software solutions. The identity authentication process is considered to be the main gateway to these services. As such, these gates have become increasingly susceptible to aggressive…

Cryptography and Security · Computer Science 2017-11-27 Marwan Darwish , Abdelkader Ouda , Luiz Fernando Capretz

Many millions of users routinely use their Google, Facebook and Microsoft accounts to log in to websites supporting OAuth 2.0 and/or OpenID Connect-based single sign on. The security of OAuth 2.0 and OpenID Connect is therefore of critical…

Cryptography and Security · Computer Science 2018-01-25 Wanpeng Li , Chris J Mitchell , Thomas Chen

Cross-site scripting (XSS) is one of the major threats menacing the privacy of data and the navigation of trusted web applications. Since its reveal in late 1999 by Microsoft security engineers, several techniques have been developed in the…

Cryptography and Security · Computer Science 2024-04-24 Abdelhakim Hannousse , Salima Yahiouche , Mohamed Cherif Nait-Hamoud
‹ Prev 1 2 3 10 Next ›