| XML has great advantages in web applications and enterprise applications, because it is simple, extensible, interoperable, reusable and open, it become the standard of data exchange eventually. Web Services provides a kind of services oriented architecture, it is really distributed, loose coupling, independent of the positions of services provider and consumer and independent of platforms. The underlying protocols of Web Services, such as WSDL, UDDI, DISCO and SOAP are all based upon XML.The wide use of XML and Web Services issues corresponding security problems.For example, the information being intercepted and captured during the transmission on network; the transmitted document being tampered with; the counterfeit of other's identity etc.To solve these security problems, the thesis studied and analysed XML Key Management Specification which was formulated by the W3C organization.The thesis elaborated the XKMS thought, the composition and the function, studied and analyzed in thoroughly the the detail of XKMS standard, and we has carried on the summary to the XKMS superiority.The thesis also researches XML security, Web Services security in depth and systematically, such as mainly security specifications, existing technologies and the latest progress. In this foundation, the thesis proposed a kind of XML key management system, follows the XKMS2.0 standard, which could support the common symmetrical encryption algorithm and the asymmetrical encryption algorithm, with good maintainability as well as the extendibility. It can be used in guaranteeing the the security of Web Services that put the XML security specifications into application; The thesis also unified the XML safety work and the Diffie-Hellman protocol, proposed a safer method which could guarantee the the exchange of shared keys. |
PDF Full Text Request