Tell me how we use SOAP-DSIG and SSL for non-repudiation?

SOAP Interview Questions and Answers

(Continued from previous question...)

Tell me how we use SOAP-DSIG and SSL for non-repudiation?

SOAP-DSIG and SSL both technology are used to satisfy security requirement.

SOAP-DSIG: Using SOAP-DSIG we can satisfy requirement message authentication.We perform task to transmit messagesl, SOAP-DSIG Message authentication by using MAC or digital signature.

SSL: In SSL we use MAC for confidentiality, sender/recipient authentication and message authentication. Using SSL we can also add two MACs to trasmitt messages.

We have need guarantee simultaneously for both message authentication through use of digital signature and sender authentication to satisfy the requirement of non-repudiation.
Now, we can say that simultaneously use of SOAP-DSIG and SSL(Used with client authentication )is the starting step towards non-repudiation. Key difference b/w SOAP-DSIG and SSL is that SOAP-DSIG can perform task of message authentication by using digital signature and use SSL client/server authentication for sender/recipient authentication.

(Continued on next question...)

Other Interview Questions

• Explain about the role of XML in SOAP?
• Can I mix and match SOAP Servers and SOAP Clients developed using toolkits from different vendors?
• Explain about the SOAP body element?
• How you explain the Content-Type header for a SOAP?
• How you explain Fault Element of SOAP?
• SOAP Toolkit FAQ - Why do I get a "library not registered" error?
• SOAP Toolkit FAQ - Why can't the Soap Toolkit read the WSDL from this site?
• How you explain Fault Element of SOAP?
• How can I setup initialization code for a service )?
• What is XML-RPC?
• More...