Web Services Security

AuthNQuery class instantiation (example), 115

creating authentication query using, 116

Kerberos ticket distribution, 187

and Publisher authentication (UDDI), 233

in WS-Security BinarySecurityToken block, 172

KeyInfo (element of XML Signature), 207. See also keys

and authentication, 76–77

and nonrepudiation, 76

keys. See also DES/Triple DES (Data Encryption Standard); PKI (Public Key Infrastructure); XKMS (XML Key Management Specification); X-KRSS (XML Key Registration Service Specification); XML Signature

asymmetric, encrypting, 26–27

and digital certificates, 29–31

digital signing and key-pair system, 262–264

key binding revocation (X-KRSS revoke operation), 158–159

key binding updating (X-KRSS reissue operation), 158

Passport key management, lack of, 188

Passport secret key exchange, 188–189

PKI (public key infrastructure), 29–31, 32–33

private key recovery (X-KRSS recovery service), 157–158

public (encryption) vs. private (decryption), 25, 26–27, 28

RA (Registration Authority), 30–31

and smartcards, 33–34

symmetric, encrypting, 25–26

X.509 certificates, 30

XKMS: client/service key generation in, 155

XKMS, key binding in, 143–145

X-KRSS, authenticating public keys with, 153–154

Kohnfelder, Lauren, 138