A streaming validation model for SOAP digital signature

Authors:
Wei Lu;K. Chiu;A. Slominski;D. Gannon
Affiliations:
Comput. Sci. Dept., Indiana Univ., South Bend, IN, USA;San Diego Supercomput. Center, CA, USA;San Diego Supercomput. Center, CA, USA;Sch. of Electron. & Comput. Sci., Southampton Univ., UK
Venue:
HPDC '05 Proceedings of the High Performance Distributed Computing, 2005. HPDC-14. Proceedings. 14th IEEE International Symposium
Year:
2005

Citing 0
Cited 3

Parallel XML processing by work stealing

Proceedings of the 2007 workshop on Service-oriented computing performance: aspects, issues, and approaches
Event-based application of ws-security policy on soap messages

Proceedings of the 2007 ACM workshop on Secure web services
XML security - A comparative literature review

Journal of Systems and Software

Quantified Score

Hi-index	0.00

Visualization

Abstract

The XML signature specification provides a rich and flexible message signature model for XML documents, and it has been adopted by SOAP applications to provide message-level security. However, the XML signature design introduces a number of complex processing steps, such as canonicalization and XPath filtering, that often lead to performance and scalability problems when encountering extremes of size and rate in the processing of XML. In this paper, we focus on the performance of validating large signed XML messages, as might be sent by a scientific application using grid Web services. We present the design and implementation of the GHPX/SSSV system for the streaming validation of SOAP digital signature. Our model consists of a streaming canonicalization and optimized SOAP signature validation. We present an empirical study of the performance characteristics of these streaming validation features. Based on our evaluations we conclude that the streaming validation model can not only provide high performance, but is also memory efficient.