In the continuing battle to establish workable standards for the B2B world, VeriSign, Microsoft and webMethods today introduced a new XML-based Framework, the XML key management specification (XKMS), to enable a broad range of software developers to integrate digital signatures and data encryption into e-commerce applications. To accelerate the development of applications incorporating these advanced technologies, the XKMS specification, which was jointly designed and prototyped by VeriSign, Microsoft and webMethods with industry support from other technology providers, was made publicly available today and will be submitted to the appropriate Web standards bodies for consideration as an open Internet standard. In addition, XKMS will be built into the Microsoft.NET architecture to ensure broad and rapid adoption of this framework in both B2B and B2C environments.
The new XKMS specification revolutionizes the development of trusted B2B and B2C applications by introducing an open framework that enables virtually any developer to easily access applications from any public key infrastructure product or service. With the XKMS specification, developers are able to integrate advanced technologies such as digital signature handling and encryption into their Web-based applications. The XKMS specification promotes the interoperability of advanced technologies because it is based on XML, a rapidly growing standard for application development.
For the next generation of e-commerce applications to truly support high-value transactions, the handling of digital keys for online authentication, digital signatures and data encryption must be simple to integrate and must interoperate across a broad range of enterprise applications, said Warwick Ford, chief technology officer for VeriSign.
Currently, developers who choose to enable applications to handle digital keys for authentication and digital signatures are often required to purchase and integrate specialized toolkits from a Public Key Infrastructure (PKI) software supplier, toolkits that only interoperate with that supplier's PKI offerings. Functions such as digital certificate processing, revocation status checking, and certification path location and validation are all built into the application via the toolkit. With the new XKMS specification, those functions are no longer built into the application but instead reside in servers that can be accessed via easily programmed XML transactions. The XKMS architecture, along with the recently drafted XML digital signature standards and the emerging XML encryption standard, provides a complete framework to ensure broad interoperability across applications developed by enterprises, B2B exchanges and other Internet communities of interest. XKMS is also compatible with the emerging standards for Web Services Description Language (WSDL) and Simple Object Access Protocol (SOAP).
A new standard for the XML-based trust services architecture will enable trust through stronger authentication and will ultimately help deliver XML's promise of expanded e-commerce across the board, thus making B2B integration technology faster and easier to deploy, as well as making massive industrial exchanges more manageable, said Jeremy Epstein, principal security architect, webMethods Inc.