loading
Documents

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Christian Mainka 1 ; Meiko Jensen 1 ; Luigi Lo Iacono 2 and Jörg Schwenk 1

Affiliations: 1 Horst Görtz Institute for IT-Security, Germany ; 2 Cologne University of Applied Sciences, Germany

ISBN: 978-989-8565-05-1

Keyword(s): XML Signature, XML Signature Wrapping, Web Services, WS-security, SOA, Cloud.

Related Ontology Subjects/Areas/Topics: Cloud Computing ; Cloud Standards ; Collaboration and e-Services ; Communication and Software Technologies and Architectures ; Data Engineering ; e-Business ; Enterprise Information Systems ; Fundamentals ; Languages, Tools and Architectures ; Mobile Software and Services ; Model-Driven Software Development ; Ontologies and the Semantic Web ; Service-Oriented Architectures ; Services Science ; Software Agents and Internet Computing ; Software Engineering ; Software Engineering Methods and Techniques ; Technology Platforms ; Telecommunications ; Web Services ; Wireless Information Networks and Systems

Abstract: XML Encryption and XML Signature are fundamental security standards forming the core for many applications which require to process XML-based data. Due to the increased usage of XML in distributed systems and platforms such as in SOA and Cloud settings, the demand for robust and effective security mechanisms increased as well. Recent research work discovered, however, substantial vulnerabilities in these standards as well as in the vast majority of the available implementations. Amongst them, the so-called XML Signature Wrapping attack belongs to the most relevant ones. With the many possible instances of this attack type, it is feasible to annul security systems relying on XML Signature and to gain access to protected resources as has been successfully demonstrated lately for various Cloud infrastructures and services. This paper contributes a comprehensive approach to robust and effective XML Signatures for SOAP-based Web Services. An architecture is proposed, which integrates the r equired enhancements to ensure a fail-safe and robust signature generation and verification. Following this architecture, a hardened XML Signature library has been implemented. The obtained evaluation results show that the developed concept and library provide the targeted robustness against all kinds of known XML Signature Wrapping attacks. Furthermore the empirical results underline, that these security merits are obtained at low efficiency and performance costs as well as remain compliant with the underlying standards. (More)

PDF ImageFull Text

Download
Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.87.147.184

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Mainka, C.; Jensen, M.; Lo Iacono, L.; Lo Iacono, L. and Schwenk, J. (2012). XSpRES - Robust and Effective XML Signatures for Web Services.In Proceedings of the 2nd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-8565-05-1, pages 187-197. DOI: 10.5220/0003925701870197

@conference{closer12,
author={Christian Mainka. and Meiko Jensen. and Luigi Lo Iacono. and Luigi Lo Iacono. and Jörg Schwenk.},
title={XSpRES - Robust and Effective XML Signatures for Web Services},
booktitle={Proceedings of the 2nd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2012},
pages={187-197},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003925701870197},
isbn={978-989-8565-05-1},
}

TY - CONF

JO - Proceedings of the 2nd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - XSpRES - Robust and Effective XML Signatures for Web Services
SN - 978-989-8565-05-1
AU - Mainka, C.
AU - Jensen, M.
AU - Lo Iacono, L.
AU - Lo Iacono, L.
AU - Schwenk, J.
PY - 2012
SP - 187
EP - 197
DO - 10.5220/0003925701870197

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.