XML Security Introduction*
- There is a requirement to ensure the integrity (via signature) and
confidentiality (via encryption) of parts of XML
documents.
- Operating on a "bucket of bits" is easy. Operating on parts of XML
documents requires the identification and processing of XML in both an
abstract (data model) and consistently serialized (octets) manner.
- These activities are not only applications using XML, they also must
address questions about XML, such as selecting subsets of a document, and
then canonicalizing them.
- This is different from access control, authentication and authorization
which have fewer issues with XML, but face tricky questions about
semantics.