Presentation is loading. Please wait.

Presentation is loading. Please wait.

Krishna Sattiraju CS 792.NET. Overview  What is XML Encryption  Methods for Encryption  Storage of Encrypted Data  Benefits of XML Secure Storage.

Published byAshlie Harrell Modified over 9 years ago

Similar presentations

Presentation on theme: "Krishna Sattiraju CS 792.NET. Overview  What is XML Encryption  Methods for Encryption  Storage of Encrypted Data  Benefits of XML Secure Storage."— Presentation transcript:

1 Krishna Sattiraju CS 792.NET

2 Overview  What is XML Encryption  Methods for Encryption  Storage of Encrypted Data  Benefits of XML Secure Storage  Types of XML Encryption

3 XML Encryption  Specification that defines how to encrypt data  Used to encrypt data, keying information and algorithms

4 Methods for encryption Using Symmetric Encryption Combination of Symmetric and Asymmetric Encryption X.509 Certificates

5 Storage of Encrypted Data  Whole element is replaced with an element named  Only the data in the element is replaced and its name remains readable in the document

6 XML Document Code

7 Encrypted Code

8 Asymmetric XML Encryption and Decryption o Select XML Element o Encrypt element o Encrypt Session Key o Create Encrypted Data element o Replace Original element o Select Encrypted Data element o Decrypt Session Key o Decrypt Cipher Data using unencrypted symmetric o Replace the Encrypted Data Element

9 Name Spaces  System. XML  System.Security. Cryptography  System.Security.Cryptography.xml

10 Benefits of XML Secure Storage XML Is Structured Format Allows for secure storage of documents Provides granularity Leverages Existing technologies

11 XML Encryption  Encrypted data is maintained.  All information needed to decrypt a document is contained within the document.  Session can be secured on the document level and shared between multiple parties.  Sensitive data is easily interchanged between applications.

12 XML Encryption of Element John Smith A23B45C56

13 XML Encryption using Content John Smith A23B45C56

14 Encrypting XML Content (Character Data) John Smith A23B45C56 Example Bank 04/02

15 XML Encryption in WS- Security <env:Envelope xmlns:env="http://www.w3.org/2001/12/soap-envelope" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"> <wsse:Security xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext">...

16 XML Encryption w/ Digital Certificate <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#"http://www.w3.org/2001/04/xmlenc Type="http://www.w3.org/2001/04/xmlenc#Element"> <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> rsakey.pem IPiEu9Nv+EsGyvV... xrfPSA+BEI+8...

17 XML Signing AND XML Encryption Order of Cryptographic operations matters Signing and Encrypting Encrypting and Signing Change of the order while Decrypting - Danger

18 References  XML Encryption by By: Derek Smyth : http://dotnetslackers.com/articles/xml/XMLEncryption.aspxDerek Smyth http://dotnetslackers.com/articles/xml/XMLEncryption.aspx  XML Encryption Syntax and Processing By Takeshi Imamura, Blair Dillaway, Ed Simon  http://www.ibm.com/developerworks/xml/library/x- encrypt2/ http://www.ibm.com/developerworks/xml/library/x- encrypt2/  http://www.devx.com/dotnet/Article/21564 http://www.devx.com/dotnet/Article/21564

19 Thank You!!!

Download ppt "Krishna Sattiraju CS 792.NET. Overview  What is XML Encryption  Methods for Encryption  Storage of Encrypted Data  Benefits of XML Secure Storage."

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Public Key Infrastructure Alex Bardas. What is Cryptography ? Cryptography is a mathematical method of protecting information –Cryptography is part of,

Public Key Infrastructure Alex Bardas. What is Cryptography ? Cryptography is a mathematical method of protecting information –Cryptography is part of,
Conventional Encryption: Algorithms

Conventional Encryption: Algorithms
XML Encryption Prabath Siriwardena Director, Security Architecture.

XML Encryption Prabath Siriwardena Director, Security Architecture.
Cryptographic Security Presented by: Josh Baker October 9 th, 2012 1CS5204 – Operating Systems.

Cryptographic Security Presented by: Josh Baker October 9 th, CS5204 – Operating Systems.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
CC3.12 Erdal KOSE Privacy & Digital Security Encryption.

CC3.12 Erdal KOSE Privacy & Digital Security Encryption.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
1 XML Encryption Notes from encrypt/index.html by Bilal Siddiqui And “Secure XML” by Eastlake and Niles.

1 XML Encryption Notes from encrypt/index.html by Bilal Siddiqui And “Secure XML” by Eastlake and Niles.
Overview of Cryptography Oct. 29, 2002 Su San Im CS Dept. EWU.

Overview of Cryptography Oct. 29, 2002 Su San Im CS Dept. EWU.
August 6, 2003 Security Systems for Distributed Models in Ptolemy II Rakesh Reddy Carnegie Mellon University Motivation.

August 6, 2003 Security Systems for Distributed Models in Ptolemy II Rakesh Reddy Carnegie Mellon University Motivation.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Web services security I

Web services security I
ENCRYPTION Jo Cromwell Cornelia Bradford. History of Encryption Encryption has been around since antiquity Cryptography began around 2,000 B.C in Egypt.

ENCRYPTION Jo Cromwell Cornelia Bradford. History of Encryption Encryption has been around since antiquity Cryptography began around 2,000 B.C in Egypt.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
What is Encryption? - The translation of data into a secret code - To read an encrypted file, you must have access to a secret key or password that enables.

What is Encryption? - The translation of data into a secret code - To read an encrypted file, you must have access to a secret key or password that enables.

Similar presentations

Ads by Google