|
Kerberos, 186–187
AuthNQuery class instantiation (example), 115
creating authentication query using, 116
Kerberos ticket distribution, 187
and Publisher authentication (UDDI), 233
in WS-Security BinarySecurityToken block, 172
KeyInfo (element of XML Signature), 207. See also keys
and authentication, 76–77
and nonrepudiation, 76
keys. See also DES/Triple DES (Data Encryption Standard); PKI (Public Key Infrastructure); XKMS (XML Key Management Specification); X-KRSS (XML Key Registration Service Specification); XML Signature
asymmetric, encrypting, 26–27
and digital certificates, 29–31
digital signing and key-pair system, 262–264
key binding revocation (X-KRSS revoke operation), 158–159
key binding updating (X-KRSS reissue operation), 158
Passport key management, lack of, 188
Passport secret key exchange, 188–189
PKI (public key infrastructure), 29–31, 32–33
private key recovery (X-KRSS recovery service), 157–158
public (encryption) vs. private (decryption), 25, 26–27, 28
RA (Registration Authority), 30–31
and smartcards, 33–34
symmetric, encrypting, 25–26
X.509 certificates, 30
XKMS: client/service key generation in, 155
XKMS, key binding in, 143–145
X-KRSS, authenticating public keys with, 153–154
Kohnfelder, Lauren, 138
|