To lean on advance xml, we might need to know some W3C standards to extending the XML understanding, Encrypting and authenticating on XML data is one of the XML, XHTML and Webservices that we might need to know in order to master the XML skills

Using encryption and authentication with web services
As web services become more prevalent, the issue of security becomes more important. Encryption and authentication are vital tools for achieving secure web services.

Security protocols such as Transport Layer Security (TLS) and Secure Sockets Layer (SSL) enable you to encrypt data and transmit it safely over the Internet. However, these protocols have a number of shortfalls, in that they provide security only between the two parties sending and receiving data at a particular moment in a transaction, rather than among all the parties in a multi-part online information exchange. For example, SSL can encrypt all details of an online purchase you make. This ensures that your credit card number is encrypted when sent to an online merchant, but it cannot ensure that the merchant then sends the number securely to a credit card verification service. XML Encryption serves to address these shortfalls. It enables you to: (more…)

Posted by calvyn | I need your Comments »

As you probably know, HTML stands for Hypertext Markup Language, the language used to create documents on the World Wide Web. It was developed during 1989 and 1990 by Tim Berners-Lee and Robert Cailliau while they were both working at CERN, the European particle physics laboratory. HTML is similar to the Standard Generalized Markup Language (SGML), which was standardized by the International Organization for Standardization in 1986. However, HTML is less complex than SGML and is much easier to learn.

The ‘HT’ part – hypertext
Hypertext – invented by Ted Nelson in the 1960s – is really a special type of database format in which individual documents can be linked to each other in any number of ways. The links between different documents are called hyperlinks – these are the embedded instructions within a document that link it to another document. On the Web, hyperlinks are typically indicated by blue text. When you click the blue text, you are brought to another related file or web page. (more…)

Posted by calvyn | 1 Comment »

After read some linux article, and having some basic knowledge, now can have basic understanding on linux processes, a process is a single program that is executed within its own virtual address space. For example, a shell is a process that is created each time a user logs in to the system. It creates a new process every time it implements a program such as a system command. A system command is an example of a collection of related commands called a job. Jobs create a series of separate processes from a single command line. So, in fact, every program running under Linux is a process.

The following table shows the three main categories of processes.

Linux can share its processing power, storage capabilities, and input and output mechanisms with several users, or with several processes created by one user. Processes such as user jobs, operating system tasks, mail, and background jobs like printing need to be monitored simultaneously by Linux. (more…)

Posted by calvyn | 2 Comments »

When discuss about solaris security, so called Solaris access control lists (ACLs), which focusing on their purpose and structure.

When file permissions aren’t enough
Conventional Solaris file permissions allow you to set read, write, and execute permissions to a file for the file’s owner, group owners, and other users. In addition, you can use special permissions such as the sticky bit permission to allow file owners to edit their files but not other users’ files.

However, these permissions are not always sufficient to meet an organization’s file security needs. This is especially applicable in large or complex organizations in which users from different departments need to collaborate. For example, you might want to assign read permission on a file to more than one group of users and to assign write permission only to certain members of these groups.

Access control lists (ACLs) allow you to assign permissions to meet more complex security requirements than conventional file access permissions. An ACL consists of a list of users and groups who have access permissions on a file or directory, as well as details of the
permissions assigned to these users and groups. Each ACL applies to one file or directory only. (more…)

Posted by calvyn | 1 Comment »

While the Linux variant of UNIX is fast becoming a desktop operating system, UNIX’s multiuser capabilities make it ideally suitable in a server role.

When tasked as a web or database server, a properly configured UNIX system will provide unparalleled periods of uptime, requiring little service. The structure of UNIX means that in the case of a hardware failure, sections of a data structure can be taken offline, replaced and put online again without shutting down the system. This makes UNIX a good choice for mission critical applications.

UNIX’s multi-user capabilities make it highly resistant to attack. It’s designed in such a way that even if a malicious party did gain access to the system, their activities would be restricted to the user account they had access to, leaving them unable to damage critical system resources. (more…)

Posted by calvyn | 1 Comment »