OASIS Specifications
web services security:
for encrypting digital content, including portions of XML documents and
protocol messages. The version of the specification current at the time of
this writing may be viewed at http://www.w3.org/TR/2002/REC-xmlenc-
core-20021210/.
ing the signature of web resources and portions of protocol messages
(anything referenceable by a URI) and procedures for computing and ver-
ifying such signatures. The version of the specification current at the time
of this writing may be viewed at http://www.w3.org/TR/2002/REC-xmld-
sig-core-20020212/.
lic keys, suitable for use in conjunction with the W3C recommendations
for XML Signature and XML Encryption. The version of the specification
current at the time of this writing may be viewed at http://www.w3.org/
TR/2005/REC-xkms2-20050628/.
Advancement of Structured Information Standards (OASIS) drives the develop-
ment, convergence, and adoption of e-business standards. OASIS is working on
the following specifications related to web services security. At the time this
document was written, OASIS standards documents are available from http://
www.oasis-open.org/specs/index.php.
message integrity, message confidentiality, and message authentication
while accommodating a wide variety of security models and encryption
technologies. This specification also defines an extensible, general-pur-
pose mechanism for associating security tokens with message content, as