Implementing XML Signatures in WSS4J
Bulding on previous Java Web Services Security columns, Bilal Siddiqui shows us
how to implement XML signature support.
Bilal Siddiqui
Bilal Siddiqui is an XML consultant. After graduating in Electronics Engineering from
the University of Engineering and Technology, Lahore, in 1995, he began designing
software solutions for industrial control systems. Later he turned to XML and used
his
experience programming in C++ to build Web- and WAP-based XML processing tools,
server-side parsing solutions, and service applications.
Articles by this author
Signing Messages with XSS4J
Bilal Siddiqui continues his series on Java Web Services Security, covering
signing XML messages with the IBM XSS4J toolkit.
Implementing XML Encryption in Java
In the third of his series on Web Services Security for Java, Bilal Siddiqui
joins together the pieces and adds XML encryption support to his WSS4J
project.
Using XSS4J for XML Encryption
In the second part of his series on implementing web services security, Bilal
Siddiqui introduces IBM alphaWorks' XML Security Suite for Java.
Web Services Security for Java
This first article in a new column by Bilal Siddiqui embarks upon deploying web
services security. Siddiqui introduces the use cases for a Java web service security
API,
and begins its implementation.
Web Services Security, Part 4
In this fourth and final part of our series on web services security, we put all
the pieces together to demonstrate how the XML Signature, XML encryption, Web Services
Security, and SAML specifications work together.
Web Services Security, Part 3
This article discusses XML-based authentication and the sharing of authentication
information across different applications, known as Single Sign-on. The Security Assertions
Markup Language (SAML) from OASIS provides expression in XML of authentication
information.
Web Services Security, Part 2
In the second part of his series on web services security technology, Bilal
Siddiqui discusses the role and function of digital signatures and encryption.
Web Services Security, Part 1
The first in a four part series discussing major issues related to securing web
services and covering the emerging XML-based security standards from the W3C and
OASIS.
XML Canonicalization, Part 2
In the second and final article of his series on XML Canonicalization, Bilal
Siddiqui shows how to cope with documents that have CDATA sections, processing instructions,
external entity references and comments.
XML Canonicalization
Bilal Siddiqui explains the process of canonicalizing XML documents, useful in
determining the logical equivalence of documents in order to secure XML
exchanges.
Implementing XPath for Wireless Devices, Part II
In the second of a two-part series, we explore the implementation of XPath on
wireless devices using the WAP family of standards.
Implementing XPath for Wireless Devices
In the first of a two-part series, we explore the implementation of XPath on
wireless devices using the WAP family of standards.