Cart
[Home] [By Thread] [By Date] [Recent Entries]
Sean McGrath wrote: > The use case here is transmitting XML-based messages from one service to > another service on a Service Oriented Architecture and doing it in such > a way that (a) it is possible to be sure that a message routed "straight > through" has not been tampered with and yet (b) the XML is fully > visibile - not a lump of attatchment goo - for the purposes of > intelligent routing. This sounds like exactly what XML digital signatures is supposed to do. If that doesn't work, then treat the document as read-only data, and wrap it in a MIME envelope (a.k.a XOP) along with a digital signature over the binary form of the data. > Equally important is the fact that an intermediating service can > add/modify/delete content from the XML instance without doing damage to > the untouched parts of the instance. I'm not sure I see how this is compatible with the need to route straight through without tampering. But again, this is a use case XML digital signatures attempts to address. Why is that not working for you? -- Elliotte Rusty Harold elharo@m... XML in a Nutshell 3rd Edition Just Published! http://www.cafeconleche.org/books/xian3/ http://www.amazon.com/exec/obidos/ISBN=0596007647/cafeaulaitA/ref=nosim
|
