[
Lists Home |
Date Index |
Thread Index
]
<Quote>
2) extensively describing a document's contents and appearing in plain
text creates security concerns.
</Quote>
XML Encryption?
Kind Regards,
Joe Chiusano
Booz | Allen | Hamilton
Mitch Amiano wrote:
>
> I'll raise the recent piece by Steven J. Vaughan-Nichols, "XML Raises Concerns as it Gains Prominence," in the May issue of IEEE Computer mag as a less well considered criticism of XML.
>
> The article says XML raises several key concerns, among them:
> 1) because they provide considerable information about a document's content, xml files include much more data than HTML files. This is a burden to a company's network, processor and storage infrastructures.
> 2) extensively describing a document's contents and appearing in plain text creates security concerns.
> 3) many developers may not be cooperating with the effort to transition to XML via XHTML.
>
> Proposed solutions
> 1) buy a centralized $35k + appliance to translate between XML and binary formats
> 2) use and XML firewall to inspect each packet, deploy extensive directory services, and use secure sockets.
> 3) none suggested. "This transition would force [developers] to learn a new set of skills and require them to rewrite their older code..."
>
> Contrasted to the Hunt and Thomas article, articles like this make me worry.
>
> -----------------------------------------------------------------
> The xml-dev list is sponsored by XML.org <http://www.xml.org>, an
> initiative of OASIS <http://www.oasis-open.org>
>
> The list archives are at http://lists.xml.org/archives/xml-dev/
>
> To subscribe or unsubscribe from this list use the subscription
> manager: <http://lists.xml.org/ob/adm.pl>
begin:vcard
n:Chiusano;Joseph
tel;work:(703) 902-6923
x-mozilla-html:FALSE
url:www.bah.com
org:Booz | Allen | Hamilton;IT Digital Strategies Team
adr:;;8283 Greensboro Drive;McLean;VA;22012;
version:2.1
email;internet:chiusano_joseph@bah.com
title:Senior Consultant
fn:Joseph M. Chiusano
end:vcard
|