Papers Related to XML Security from Joseph M. Reagle Jr. on 2000-05-23 (xml-encryption@w3.org from May 2000)

From: Joseph M. Reagle Jr. <reagle@w3.org>
Date: Tue, 23 May 2000 17:05:46 +0200
To: "Public XML Encryption List" <xml-encryption@w3.org>
Message-Id: <3.0.5.32.20000523170546.02860568@localhost>

I've read up on (and spoken with the authors at LCS and WWW9) of the
following papers that relate to XML security, and thought I'd forward the
references on.
___

"Jikzi: A New Framework for Secure Publishing provides a security and
authentication framework for all kinds of electronic publishing - whether
catalogues, music, software, public key certificates or even plain old
fashioned books. It supports multiple security policies in a single
transparent markup language, and shows how existing policies can be
re-engineered for the world of XML."  
http://www.cl.cam.ac.uk/~jhl21/jikzi-cpw/

"The Eternal Resource Locator: An Alternative Means of Establishing Trust on
the World Wide Web is the follow-on to Wax which extends the lessons learned
from proprietary to open publishing systems. We describe how trust
mechanisms can be embedded in html documents in a natural way, which may cut
through much of the logjam surrounding certification on the net;" [Reagle:
Reminds me of DOMHASH].
http://www.cl.cam.ac.uk/~fapp2/papers/ec98-erl/

Securing XML Documents. Ernesto Damiani1, Sabrina De Capitani di Vimercati1,
Stefano Paraboschi2, and Pierangela Samarati1
"...The eXtensible Markup Language (XML), a markup language promoted by the
World Wide Web Consortium (W3C), represents an important opportunity to
solve this problem. We present an access control model to protect
information distributed on the Web that, by exploiting XML's own
capabilities, allows the definition and enforcement of access restrictions
directly on the structure and content of XML documents. We also present a
language for the specification of access restrictions that uses standard
notations and concepts and briefly describe a system architecture for access
control enforcement based on existing technology. "
http://link.springer.de/link/service/series/0558/bibs/1777/17770121.htm


_________________________________________________________
Joseph Reagle Jr.   
W3C Policy Analyst                mailto:reagle@w3.org
IETF/W3C XML-Signature Co-Chair   http://www.w3.org/People/Reagle/

Received on Tuesday, 23 May 2000 11:06:30 UTC