Re: Fw: Signing of XSL scripts

Play the video

Subject: Re: Fw: Signing of XSL scripts
From: Gavin Nicol <gtn@xxxxxxxxxxxx>
Date: Thu, 28 May 1998 09:35:56 -0400

>It is beginning to look as if the use of ECMAScript may lead to some
>problems with system security unless there is a change in the way in which
>scripts can be authenticated in Internet Explorer. For input/output to a

Even authentication isn't enough. Having an arbitrary scripting language
opens you to denial of serive attacks, and other such things. All the 
signing does is allow you to know who *supposedly* sent you the script
(it will always be possibly to fake identification here too given enough
resources). What is needed is some way for the XSL processor to be able 
to "prove" correctness. 


 XSL-List info and archive:  http://www.mulberrytech.com/xsl/xsl-list

Current Thread
Fw: Signing of XSL scripts Martin Bryan - Thu, 28 May 1998 04:33:31 -0400 (EDT) Gavin Nicol - Thu, 28 May 1998 09:40:16 -0400 (EDT) <= John Dreystadt - Thu, 28 May 1998 10:33:15 -0400 (EDT) Paul Prescod - Fri, 29 May 1998 10:05:16 -0400 (EDT) John Dreystadt - Fri, 29 May 1998 18:25:10 -0400 (EDT) Paul Prescod - Fri, 29 May 1998 10:05:18 -0400 (EDT)

<- Previous	Index	Next ->
Fw: Signing of XSL scripts, Martin Bryan	Thread	RE: Fw: Signing of XSL scripts, John Dreystadt
Fw: Signing of XSL scripts, Martin Bryan	Date	RE: Fw: Signing of XSL scripts, John Dreystadt
	Month

PURCHASE STYLUS STUDIO ONLINE TODAY!

Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced!

Download The World's Best XML IDE!

Accelerate XML development with our award-winning XML IDE - Download a free trial today!

Subscribe in XML format

RSS 2.0
Atom 0.3

XML Editor - Download a 15 Day Free Trial Now >

See What's New in Stylus Studio >

Buy Stylus Studio - XML Editor - Now >