Internet is currently encountering two major changes: one is the convergence
of client-server connectivity with both P2P and Web Services, and the other
one is that XML and SOAP running over HTTP seems to take the role of
traditional static HTML documents.
As a result, this project aims to survey current XML-related security
products and to discuss the specification and functions of such product.
With possible conformance to AAA requirements, a XML-supported security
gateway should be the final output of this project, providing the three
major concerns in XML security:
1. Confidentiality (XML encryption and decryption)
2. Authentication (XML digital signature)
3. Integrity (the parsing of XML document)