• To: XML DEV <xml-dev@l...>
• Subject: Re: IEEE Computer: "XML Raises Concerns" (Was Re: XML [expletive deleted])
• From: "W. E. Perry" <wperry@f...>
• Date: Wed, 07 May 2003 09:22:56 -0400
• Organization: Fiduciary Automation
• References: <B885BEDCB3664E4AB1C72F1D85CB29F805C1F974@R...> <3EB8762B.3010407@n...> <3EB8FE2F.18B0180E@b...>

Chiusano Joseph wrote:

> <Quote>
> 2) extensively describing a document's contents and appearing in plain text creates security concerns.
> </Quote>
>
> XML Encryption?

I'm sorry, but at a stroke this eliminates the chief functional advantage of XML:  providing via markup interoperability between processes which do not share identical a priori understandings and indeed may not
know of each other's existence. For security, http (SSL if required) connections provide what is required for the one-to-one interchange of documents in a RESTful fashion. The fundamental point is that only
documents are exchanged--not datastructures 'intended' for a particular sort of processing, and most certainly not semantics which one party or another might suppose inhere in a particular understanding of a
particular document and which as a nasty side effect require that each party to a document exchange be 'semantically' precisely what his counterparty supposes him to be.

Respectfully,

Walter Perry

• References:
  • RE: XML [expletive deleted]
    • From: "Dare Obasanjo" <dareo@m...>
  • IEEE Computer: "XML Raises Concerns" (Was Re: XML [expletive deleted])
    • From: Mitch Amiano <mamiano@n...>
  • Re: IEEE Computer: "XML Raises Concerns" (Was Re: XML [expletive deleted])
    • From: "Chiusano Joseph" <chiusano_joseph@b...>

• Prev by Date: Re: IEEE Computer: "XML Raises Concerns" (Was Re: XML [expletive deleted])
• Next by Date: RE: Blended Authentication (AKA "Granular Access Control")
• Previous by thread: Re: IEEE Computer: "XML Raises Concerns" (Was Re: XML [expletive deleted])
• Next by thread: Re: XML [expletive deleted]
• Index(es):
  • Date
  • Thread