An XML device or application that provides security functions does not mean that the solution itself is secure. A secure XML hardware device requires a properly designed architecture, precise algorithm implementation, secure key storage, encrypted policy data, and a secure API. While most anyone could claim these features, independent certification with security agencies such as NIST and DoD provide the unbiased analysis of these security requirements. In this Podcast we will discuss in more detail why the FIPS and DoD Certified Forum Sentry XML Gateway provides distinct advantages over non certified devices, including the following areas:
- XML device PKI private key compromise protection
- SSL ciphers and XML security
- Secure policy data storage
- X509 authentication with CRL and parent chain signature verification
- Physical hardware integrity
SOA Research Library
