Skip to main content

Notice: this Wiki will be going read only early in 2024 and edits will no longer be possible. Please see: https://gitlab.eclipse.org/eclipsefdn/helpdesk/-/wikis/Wiki-shutdown-plan for the plan.

Jump to: navigation, search

Difference between revisions of "WTP/XMLSecurityTools"

< WTP
(Download)
(Documentation)
 
(19 intermediate revisions by the same user not shown)
Line 1: Line 1:
== XML Security Tools ==
+
== XML Security Tools ==
  
 +
[[Image:Egg-incubation.png|right]]
  
== Background ==
+
The '''XML Security Tools''' are a set of plug-ins, which enable users and developers to easily canonicalize, sign, verify, encrypt and decrypt arbitrary XML documents (that is, most of the XML Security functionality).
  
XML is available more or less everywhere nowadays. As configuration files, for data exchange, in XML enabled databases, web services and many more. And a lot of these applications and services do not secure their XML documents: neither encryption nor digital signatures are applied. Or standard transport security like https is used. This destroys the advantages of XML and prevents parsing.
+
XML is available more or less everywhere nowadays. As configuration files, for data exchange, in XML enabled databases, web services and many more. And a lot of these applications and services do not secure their XML documents: neither encryption nor digital signatures are applied. Or standard transport security like https is used. This destroys the advantages of XML and prevents parsing and processing with XML APIs for example.
  
 
Using XML Security to secure XML based information provides many advantages: the XML structure of the XML document remains intact, independent of the applied signature or encryption (or both). Arbitrary elements or element content can be secured, with different keys if desired. XML Security provides end-to-end-security, applying security directly to the message (information), not to the transport.
 
Using XML Security to secure XML based information provides many advantages: the XML structure of the XML document remains intact, independent of the applied signature or encryption (or both). Arbitrary elements or element content can be secured, with different keys if desired. XML Security provides end-to-end-security, applying security directly to the message (information), not to the transport.
  
The '''XML Security Tools''' are a set of plug-ins, which enable users and developers to easily canonicalize, sign, verify, encrypt and decrypt arbitrary XML documents in different editors. The aim is to support as many XML editors as possible (with a preference on the WTP XML Editor) from which one can call all available XML Security wizards/ tools.  
+
== Background ==
 +
 
 +
The '''XML Security Tools''' are a set of plug-ins, which enable users and developers to easily canonicalize, sign, verify, encrypt and decrypt arbitrary XML documents in different Eclipse editors. The aim is to support as many XML editors as possible (with a preference on the WTP XML Editor) from which all available XML Security wizards/ tools are accessible. The intent of the XML Security Tools project is to provide an easy to use possibility to secure various XML documents in various editors (or via extension points from any other plug-in). Its intention is to spread the use of XML Security and to show users the power of the W3C recommendations.
  
 
All XML security functionality is based on the '''Apache XML Security''' project '''Santuario'''. No further cryptographic software or library is required.
 
All XML security functionality is based on the '''Apache XML Security''' project '''Santuario'''. No further cryptographic software or library is required.
  
The code base is based on an initial code contribution from Dominik Schadow and his original project at SourceForge. Dominik has contributed that code base to Eclipse as of September 2008. All code is licensed under the Eclipse Public License.
+
The Eclipse '''XML Security Tools''' are based on a contribution from the '''XML-Security Plug-In''' project, originally created by Dominik Schadow and hosted at SourceForge. Dominik has contributed that code base to Eclipse as of September 2008. All code is licensed under the Eclipse Public License.
  
 
== Download ==
 
== Download ==
  
The latest released version of the XML Security Tools plug-ins and features can be found at:  
+
The latest released version of the XML Security Tools can be found at the committer download page
 +
 
 +
http://build.eclipse.org/webtools/committers/
 +
 
 +
or on the WTP Incubator download page
  
 
http://www.eclipse.org/webtools/incubator/downloads/
 
http://www.eclipse.org/webtools/incubator/downloads/
  
== Project Description ==
+
== Documentation ==
  
The Eclipse '''XML Security Tools''' will be based on a contribution from the '''XML-Security Plug-In''' project, originally created by Dominik Schadow and hosted at SourceForge. The goal of the project is to provide an easy to use possibility to secure various XML documents in various editors (or via extension points). Its intention is to spread the use of XML Security and to show users the power of the W3C recommendations.
+
All documentation is fully integrated in the Eclipse help system and is included in every download of the XML Security Tools project.
  
== Extension Points ==
+
'''User Guide'''
 +
* [[XST_Project/UserGuide/Overview | Overview]]
 +
* [[XST_Project/UserGuide/Canonicalization | Canonicalization]]
 +
* [[XST_Project/UserGuide/Signing | Signing]]
 +
* [[XST_Project/UserGuide/Verification | Verification]]
 +
* [[XST_Project/UserGuide/Encryption | Encryption]]
 +
* [[XST_Project/UserGuide/Decryption | Decryption]]
  
'''XML Security Tools''' will offer different extension points to easily canonicalize/ encrypt/ decrypt/ sign and verify arbitrary XML documents (including XML document fragments).
+
== Project Status ==
 +
 
 +
Current status and views of the product backlog can be found on the [[XST Development]] pages. These pages will be used to show and track progress for each milestone release.
  
 
== Resources ==
 
== Resources ==
Line 33: Line 48:
  
 
[http://santuario.apache.org/ Apache Santuario] - The Apache XML Security project.
 
[http://santuario.apache.org/ Apache Santuario] - The Apache XML Security project.
 +
 +
== Tutorials ==
 +
 +
German tutorials (created for the original XML-Security Plug-In):
 +
 +
* [http://www.xml-sicherheit.de/tutorials/basics.html XML Security Basics]
 +
* [http://www.xml-sicherheit.de/tutorials/plugin.html XML Security Tools]
 +
* [http://www.xml-sicherheit.de/tutorials/guide.html XML Security Guide]
 +
 +
[[Category:Eclipse Web Tools Platform Project]]
 +
[[Category:XML Security Tools]]

Latest revision as of 05:40, 20 June 2010

XML Security Tools

Egg-incubation.png

The XML Security Tools are a set of plug-ins, which enable users and developers to easily canonicalize, sign, verify, encrypt and decrypt arbitrary XML documents (that is, most of the XML Security functionality).

XML is available more or less everywhere nowadays. As configuration files, for data exchange, in XML enabled databases, web services and many more. And a lot of these applications and services do not secure their XML documents: neither encryption nor digital signatures are applied. Or standard transport security like https is used. This destroys the advantages of XML and prevents parsing and processing with XML APIs for example.

Using XML Security to secure XML based information provides many advantages: the XML structure of the XML document remains intact, independent of the applied signature or encryption (or both). Arbitrary elements or element content can be secured, with different keys if desired. XML Security provides end-to-end-security, applying security directly to the message (information), not to the transport.

Background

The XML Security Tools are a set of plug-ins, which enable users and developers to easily canonicalize, sign, verify, encrypt and decrypt arbitrary XML documents in different Eclipse editors. The aim is to support as many XML editors as possible (with a preference on the WTP XML Editor) from which all available XML Security wizards/ tools are accessible. The intent of the XML Security Tools project is to provide an easy to use possibility to secure various XML documents in various editors (or via extension points from any other plug-in). Its intention is to spread the use of XML Security and to show users the power of the W3C recommendations.

All XML security functionality is based on the Apache XML Security project Santuario. No further cryptographic software or library is required.

The Eclipse XML Security Tools are based on a contribution from the XML-Security Plug-In project, originally created by Dominik Schadow and hosted at SourceForge. Dominik has contributed that code base to Eclipse as of September 2008. All code is licensed under the Eclipse Public License.

Download

The latest released version of the XML Security Tools can be found at the committer download page

http://build.eclipse.org/webtools/committers/

or on the WTP Incubator download page

http://www.eclipse.org/webtools/incubator/downloads/

Documentation

All documentation is fully integrated in the Eclipse help system and is included in every download of the XML Security Tools project.

User Guide

Project Status

Current status and views of the product backlog can be found on the XST Development pages. These pages will be used to show and track progress for each milestone release.

Resources

Original Project Proposal - The original project proposal.

Apache Santuario - The Apache XML Security project.

Tutorials

German tutorials (created for the original XML-Security Plug-In):

Copyright © Eclipse Foundation, Inc. All Rights Reserved.