The XML Security standards define XML vocabularies and processing rules in order to meet security requirements. These standards use legacy cryptographic and security technologies, as well as emerging XML technologies, to provide a flexible, extensible and practical solution toward meeting security requirements. The XML Security standards include XML Digital Signature for integrity and signing solutions, XML Encryption for confidentiality, XML Key Management (XKMS) for public key registration, location and validation, Security Assertion Markup Language (SAML) for conveying authentication, authorization and attribute assertions, XML Access Control Markup Language (XACML) for defining access control rules, and Platform for Privacy Preferences (P3P) for defining privacy policies and preferences. Major use cases include securing Web Services (WS-Security) and Digital Rights Management (eXtensible Rights Markup Language 2.0 - XrML).
- XML Security Overview
- XML Digital Signature (for Integrity and Signatures)
- XML Encryption (for Confidentiality)
- XML Key Management (XKMS) (for Key Management)
- Security Assertion Markup Language (SAML) (for Making Authentication and Authorization Assertions)
- XML Access Control Markup Language (XACML) (for Stating Authorization Rules)