Visit the W3C homepage

Standards
Standards

Understand the various specifications, their maturity levels on the web standards track, and their adoption.
Explore web standards
Groups
Groups

A variety of groups develop Web Standards, guidelines, or supporting materials.
About W3C groups
Get involved
Get involved

W3C works at the nexus of core technology, industry needs, and societal needs.
Find ways to get involved
Resources
Resources

Master Web fundamentals, use our developer tools, or contribute code.
Learn from W3C resources
News and events
News and events

Recent content across news, blogs, press releases, media; upcoming events.
Follow news and events
About
About

Understand our values and principles, learn our history, look into our policies, meet our people.
Find out more about us
Search
My account

XML Signature Correction Addresses Security Issue

Author(s) and publish date

Published:: 14 July 2009

The XML Security Working Group has published a proposed correction to the XML Signature specification. The correction addresses a specification-level security issue that can lead to an authentication bypass (CVE-2009-0217). It will be incorporated into an upcoming Working Draft for the XML Signature 1.1 specification. For information about affected implementations, see CERT Vulnerability Note 466161. For more information about the issue, see the W3C Q&A blog. Learn more about W3C's Security Activity.

Related RSS feed

Subscribe to our news feed