-
Popular XML Libraries Vulnerable to Denial of Service Attacks
CERT-FI Advisory on XML Libraries Several vulnerabilities regarding the parsing of XML data have been found in XML library implementations. The vulnerabilities are related to the parsing of XML elements with unexpected byte values and recursive parentheses, which cause the program to access memory out of bounds, or to loop indefinitely. The effects of the vulnerabilities include denial of service and potentially code execution. Some of the ...
-
Advantages of an integrated security solution for HTML and XML
NetScaler's Application Firewall offers great protection for Web Applications via a positive security model that lets the user decide what is allowed to reach their web server. Web site vulnerability and compliance requirements can be met by deploying this integrated firewall. But the concept of the web is changing. Expanding beyond the traditional web pages, many sites now include programmable interfaces accessible via XML based APIs. ...
-
What is XML?
XML Extensible Markup Language (XML) is a W3C standard for creating custom markup language to representing structured data in text. Characteristics of XML Simple and Plain Text Easy to read and understand both for humans and computers Supports "all" platforms and programming languages Supports multi-lingual documents Self-description Meta data in the form of tags and attributes Simplifies tools/programs development Open Widely adopted World Wide Web Consortium (W3C) standard since 1998 Extensibility No fixed set of tags. New tags ...
-
XML Security Features in Netscaler 9.0
One of the long awaited new features in NetScaler 9.0 is XML security. In 2007, Citrix acquired QuickTree, a small privately-held software technology provider on the forefront of addressing the key security and performance challenges of XML, web services and Web 2.0. With Netscaler 9.0 the XML security capabilities acquired from QuickTree are fully integrated into the Netscaler web application delivery appliance. Some the XML Security ...