• DocumentCode
    389222
  • Title

    XML security using XSLT

  • Author

    Bartlett, R.G. ; Cook, M.W.

  • Author_Institution
    Centre for Adv. Syst. Eng., Western Sydney Univ., NSW, Australia
  • fYear
    2003
  • fDate
    6-9 Jan. 2003
  • Abstract
    The eXtensible Markup Language (XML) is regarded generally as having promise of becoming established as the general purpose framework for enabling transfer of data amongst heterogeneous environments. It is of interest therefore to analyse how suitable it may be once details of applications requirements and constraints are taken into account. One important requirement is for the security of documents in transit. Closely associated with XML is the eXtensible Stylesheet Language (XSL), whose document transformation component (XSLT) may well have sufficient functionality to perform all reasonable cryptographic transformations to deliver a desired level of document security. We examine this question by describing a real world XML application whose security requirements are more complex than for a simple document transfer between just two parties; proposing a document transfer architecture into which XSLT can be plugged-in; and identifying those features of XSLT which must be applied to meet the application requirements. We conclude that XSLT is only just adequate in the proposed scenario; and then only by making use of its " extension functions " capability.
  • Keywords
    XML; cryptography; electronic data interchange; security of data; XML security; XSLT; cryptographic transformations; data transferring; document security; document transfer architecture; document transformation component; eXtensible Markup Language; eXtensible Stylesheet Language; Containers; Cryptography; Data engineering; Data security; Humans; Information security; Style sheet languages; Systems engineering and theory; Web sites; XML;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    System Sciences, 2003. Proceedings of the 36th Annual Hawaii International Conference on
  • Print_ISBN
    0-7695-1874-5
  • Type

    conf

  • DOI
    10.1109/HICSS.2003.1174279
  • Filename
    1174279