WS-SecureConversation - PowerPoint PPT Presentation

About This Presentation

Title:

WS-SecureConversation

Description:

WS-SecureConversation Vidya Iyer 3/11/06 Web services SecureConversation End-to-end security Leverages SSL, and Kerberos Leverages XMLENC and XMLDSIG Establishes ... – PowerPoint PPT presentation

Number of Views:8

Avg rating:3.0/5.0

Slides: 11

Provided by: csWashing

Learn more at: https://courses.cs.washington.edu

Category:

Tags: secureconversation | amazon | services

Transcript and Presenter's Notes

Title: WS-SecureConversation

1
WS-SecureConversation

Vidya Iyer
3/11/06

2
Web services
3
(No Transcript)
4
SecureConversation

End-to-end security
Leverages SSL, and Kerberos
Leverages XMLENC and XMLDSIG
Establishes contexts for convenient multi-message
communication
Initial overhead to establish context, then
faster communication

5
Terms

Security Token security related information
(ie. X.509 cert, Kerberos ticket, username)
Security Context established authenticated
state, and related keys
Security Context Token URI representation of
Security Context

6
Creating Secure Contexts
7
Changing contexts

Amending, Renewing, Cancel contexts
Requester sends Amend URI http//schemas.xmlsoap.o
rg/ws/2005/02/trust/RST/SCT/Amend
And proof of possession of key
Recipients authenticate request and update their
context
Same for Renew, Cancel

8
Deriving keys

Common to use SecureContexts to agree on
pseudorandom generators to derive keys
Uses DeriveKeyToken syntax
Syntax is agnostic to key derivation scheme
No need to send key material

9
Benefits over SSL

End-to-end security
XML aware
Selective encryption
Easier to nullify existing contexts

10
Questions?

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

Introducing-PowerShowcom PowerPoint PPT Presentation

Introducing-PowerShowcom - Introducing-PowerShowcom (Without Music)

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

Federal CIO Council PowerPoint PPT Presentation

Federal CIO Council - The original ebXML Registry specification was created as part of the 18-month ... The specification authors conducted a WS-Trust/WS-SecureConversation ... | PowerPoint PPT presentation | free to view

Web Services Security PowerPoint PPT Presentation

Web Services Security - will define a generic SOAP policy format, which can support more than just security policies ... The Currency service will only process requests with a security ... | PowerPoint PPT presentation | free to view

Reliable Messaging in the Real World PowerPoint PPT Presentation

Reliable Messaging in the Real World - VP and Founder, WSO2 Inc. OASIS Adoption Forum. Ditton Manor, October ... Co-chair of WS-RX Technical Committee. Co-founder and VP/Technical Sales, WSO2. WSO2 ... | PowerPoint PPT presentation | free to view

Web Services Security Standards Overview for the Non-Specialist PowerPoint PPT Presentation

Web Services Security Standards Overview for the Non-Specialist - What parts of msgs need to be protected Confidentiality, Integrity. Token assertions ... Can apply to response as well as request. Supporting Token assertions ... | PowerPoint PPT presentation | free to view

SOW PowerPoint PPT Presentation

SOW - SOW & WSE. Tsai, Meng-Ru. Consultant. Microsoft Technologies Centre. Microsoft Taiwan Corp. ... A set of components which can be invoked, and whose interface ... | PowerPoint PPT presentation | free to view

XML Security Standards Overview for the NonSpecialist PowerPoint PPT Presentation

XML Security Standards Overview for the NonSpecialist - Technologies and procedures intended to implement organizational policy in spite ... XML becoming fashionable. OASIS offered favorable environment ... | PowerPoint PPT presentation | free to view

OPC UA Openness, Productivity, Connectivity Unified Architecture PowerPoint PPT Presentation

OPC UA Openness, Productivity, Connectivity Unified Architecture - OPC UA Openness, Productivity, Connectivity Unified Architecture Prof.Salvatore Cavalieri University of Catania Dept.Computer Science and Telecommunications Engineering | PowerPoint PPT presentation | free to view

Grid Security: What is it? Where is it going? Why? PowerPoint PPT Presentation

Grid Security: What is it? Where is it going? Why? - Title: PowerPoint Presentation Last modified by: Computer Science Created Date: 1/1/1601 12:00:00 AM Document presentation format: On-screen Show Other titles | PowerPoint PPT presentation | free to view

XML Web-Services PowerPoint PPT Presentation

XML Web-Services - DVD or VHS? XML Web Services. What is this? ... Overview to XML Web Services. Simple Web Services. SOAP a protocol or another document XML? ... | PowerPoint PPT presentation | free to view

Patterns%20for%20Web%20Services%20Security%20Standards PowerPoint PPT Presentation

Patterns%20for%20Web%20Services%20Security%20Standards - WS-Federation: Active Requestor Profile. WS-Federation: Passive Requestor Profile. WS-Signature ... OASIS Specification. Latest Version: WS-Security 1.1 ... | PowerPoint PPT presentation | free to view

BCS Teesside Web Services PowerPoint PPT Presentation

BCS Teesside Web Services - BCS Teesside Web Services David Fuller | PowerPoint PPT presentation | free to view

DIMACS workshop, May 5 PowerPoint PPT Presentation

DIMACS workshop, May 5 - ... the signature has been computed using key derived from Alice's secret password ... local keys and fresh nonces. Processes represent protocol configurations ... | PowerPoint PPT presentation | free to view

Convergence in Messaging Frameworks PowerPoint PPT Presentation

Convergence in Messaging Frameworks - Initially over-hyped, now lacking visibility in the market place, ... Pulled message sent over HTTP response (if HTTP) Sent Reliably ('Exactly-Once' delivery) ... | PowerPoint PPT presentation | free to view

Web Services Security PowerPoint PPT Presentation

Web Services Security - Web Services Security dr. Joris Claessens European Microsoft Innovation Center Outline Introduction: Web Services ? Secure, reliable, and ... | PowerPoint PPT presentation | free to view

Web Services Enhancements for Microsoft .NET (WSE) PowerPoint PPT Presentation

Web Services Enhancements for Microsoft .NET (WSE) - Random Logic l Forum .NET l 2006. 1. Web Services Enhancements for Microsoft. ... defined invocable interfaces which can be called in defined sequences to form ... | PowerPoint PPT presentation | free to view

New Features of GT4 Distinguished from GT3 PowerPoint PPT Presentation

New Features of GT4 Distinguished from GT3 - WSRF based delegation service. WS A&A (Message-level and Authorization ... out of critical path ... New service in GT4. Perform various actions under a ... | PowerPoint PPT presentation | free to view

Introduction to WSE 2 PowerPoint PPT Presentation

Introduction to WSE 2 - QMSDNUG 20th July 2004. http://www.dotnetjunkies.com/weblog/JosephCooney ... cast.com/ http://pluralsight.com/blogs/aaron/ http://weblogs.asp.net/yreynhout ... | PowerPoint PPT presentation | free to view

Web Service Security PowerPoint PPT Presentation

Web Service Security - Web Service Security CSCI5931 Web Security Instructor: Dr. T. Andrew Yang Student: Jue Wang Outline Introduction Web Services Security Model Terminology Web Services ... | PowerPoint PPT presentation | free to view

The SOAP Story PowerPoint PPT Presentation

The SOAP Story - A long history on the Microsoft platform. DCOM, .NET Remoting ... (ordered list of channel types & config) channel type N. channel type 2. channel type 1 ... | PowerPoint PPT presentation | free to view

Without Security, Web Services are Dead on Arrival PowerPoint PPT Presentation

Without Security, Web Services are Dead on Arrival - The mainframe running Cobol from dusty decks. Connecting to external ... Must be a static. mechanism. Application. XKMS. XKMS. XKMS. 26. WS-KeyAgreement ' ... | PowerPoint PPT presentation | free to view

Web%20Services%20and%20Web%20Services%20Security%20Presented%20August%207,%202004%20at%20AMCIS2004%20New%20York,%20New%20York%20by%20Dr.%20Robert%20J.%20Boncella%20Washburn%20University PowerPoint PPT Presentation

Web%20Services%20and%20Web%20Services%20Security%20Presented%20August%207,%202004%20at%20AMCIS2004%20New%20York,%20New%20York%20by%20Dr.%20Robert%20J.%20Boncella%20Washburn%20University - Dr. Robert J. Boncella. Washburn University. 2. Overview of Presentation ... Ford, W., Hallam-Baker, P., Fox, B., Dillaway, B., LaMacchia, B., Epstein, J. ... | PowerPoint PPT presentation | free to view

Web Service Security PowerPoint PPT Presentation

Web Service Security - Security Token Define a security token as a representation of security-related information (e.g.X.509 ... Web Service Security Model Terminology Web ... | PowerPoint PPT presentation | free to view

The Enterprise Service Bus: What is it and what are the implications for the justice community erik' PowerPoint PPT Presentation

The Enterprise Service Bus: What is it and what are the implications for the justice community erik' - The Enterprise Service Bus: What is it and what are the implications for the justice community erik' | PowerPoint PPT presentation | free to view

Mr.%20Abdelkrim%20Boujraf,%20Unisys PowerPoint PPT Presentation

Mr.%20Abdelkrim%20Boujraf,%20Unisys - The majority of eGovernment systems is and may have to remain heterogeneous. ... A number of persons are taken into custody, whilst investigations start. ... | PowerPoint PPT presentation | free to view

SOA-6: Standards for Service-Oriented Architecture PowerPoint PPT Presentation

SOA-6: Standards for Service-Oriented Architecture - SOA-6: Standards for Service-Oriented Architecture Glen Daniels Standards Strategist, Sonic Agenda SOA in a Nutshell The Need for Standards The Standards Landscape ... | PowerPoint PPT presentation | free to view

WSTrust Specification PowerPoint PPT Presentation

WSTrust Specification - A Web service is a software application identified by a URI, ... James Snell, t. Doug, K. Pavel'Programming Web Services with SOAP', 1st edition, O'REILLY. ... | PowerPoint PPT presentation | free to view

Identity Management Standards PowerPoint PPT Presentation

Identity Management Standards - Passive and Active Profiles. Currently in Standardization process in OASIS. Implementations: ... OASIS WS-Security, WS-Federation, WS-Trust, WS ... | PowerPoint PPT presentation | free to view