Secure Javascript Object Notation (SecJSON) Enabling granular confidentiality and integrity of JSON documents
Currently, web and mobile-based systems exchange information with other services, mostly through APIs that extend the functionality and enable multipart interoperable information exchange. Most of this is accomplished through the usage of RESTful APIs and data exchange that is conducted using JSON o...
Uložené v:
| Vydané v: | ICITST : 2016 11th International Conference for Internet Technology and Secured Transactions s. 329 - 334 |
|---|---|
| Hlavní autori: | , |
| Médium: | Konferenčný príspevok.. |
| Jazyk: | English |
| Vydavateľské údaje: |
Infonomics Society
01.12.2016
IEEE |
| Predmet: | |
| ISBN: | 1908320737, 9781908320735 |
| On-line prístup: | Získať plný text |
| Tagy: |
Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
|
| Abstract | Currently, web and mobile-based systems exchange information with other services, mostly through APIs that extend the functionality and enable multipart interoperable information exchange. Most of this is accomplished through the usage of RESTful APIs and data exchange that is conducted using JSON over the HTTP or HTTPS protocol. In the case of the exchange requires some specific security requirements, SSL/TLS protocol is used to create a secure authenticated channel between the two communication end-points. This is a scenario where all the content of the channels is encrypted and is useful if the sender and the receptor are the only communicating parties, however this may not be the case. The authors of this paper, present a granular mechanism for selectively offering confidentiality and integrity to JSON documents, through the usage of public-key cryptography, based on the mechanisms that have been used also to provide XML security. The paper presents the proposal of the syntax for the SecJSON mechanism and an implementation that was created to offer developers the possibility to offer this security mechanism into their own services and applications. |
|---|---|
| AbstractList | Currently, web and mobile-based systems exchange information with other services, mostly through APIs that extend the functionality and enable multipart interoperable information exchange. Most of this is accomplished through the usage of RESTful APIs and data exchange that is conducted using JSON over the HTTP or HTTPS protocol. In the case of the exchange requires some specific security requirements, SSL/TLS protocol is used to create a secure authenticated channel between the two communication end-points. This is a scenario where all the content of the channels is encrypted and is useful if the sender and the receptor are the only communicating parties, however this may not be the case. The authors of this paper, present a granular mechanism for selectively offering confidentiality and integrity to JSON documents, through the usage of public-key cryptography, based on the mechanisms that have been used also to provide XML security. The paper presents the proposal of the syntax for the SecJSON mechanism and an implementation that was created to offer developers the possibility to offer this security mechanism into their own services and applications. |
| Author | Santos, Tiago Serrao, Carlos |
| Author_xml | – sequence: 1 givenname: Tiago surname: Santos fullname: Santos, Tiago email: tfpss1@iscte.pt organization: Ed. ISCTE, ISCTE - Inst. Univ. de Lisboa, Lisbon, Portugal – sequence: 2 givenname: Carlos surname: Serrao fullname: Serrao, Carlos email: caros.serrao@iscte.pt organization: Ed. ISCTE, ISCTE - Inst. Univ. de Lisboa, Lisbon, Portugal |
| BookMark | eNpNkMFOAjEURWvUREG-gE3d6QJ8bWfa6dIQVAiBBbiePNoOKRk6pFNI-HshsHB1c5Jz7-J2yENogiOkz2DIGOiPyWiyWq6GHJgcqiKXimd3pMM0FIKDEur-PzyRXttuAYBpWTDOn8lu6cwhOjrFI7Ym-n2ii_XWmUTnTcLkm0Dfzsp0uZi_03HAde3Dhm4ihkONkZomVN66kDzWPp0oBkt9SG4TL9RU9FKktjGH3VlqX8hjhXXrerfskt-v8Wr0M5gtviejz9nA80ymgdFOK2EryFkFhTSWoTEaLGRaF0pW1mUouVNo1FqiKRQ3KBxHAMEZ5FZ0yet1NxrEfRnd0bcJ25IBKFbyPAdxdvpXxzvnyn30O4yn8nah-ANPc2cd |
| ContentType | Conference Proceeding |
| DBID | 6IE 6IL CBEJK RIE RIL RCLKO |
| DOI | 10.1109/ICITST.2016.7856724 |
| DatabaseName | IEEE Electronic Library (IEL) Conference Proceedings IEEE Xplore POP ALL IEEE Xplore All Conference Proceedings IEEE Electronic Library (IEL) IEEE Proceedings Order Plans (POP All) 1998-Present RCAAP open access repository |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: RIE name: IEEE/IET Electronic Library (IEL) (UW System Shared) url: https://ieeexplore.ieee.org/ sourceTypes: Publisher |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Computer Science |
| EISBN | 1908320737 9781908320735 |
| EndPage | 334 |
| ExternalDocumentID | 10071_25503 7856724 |
| Genre | orig-research |
| GroupedDBID | 6IE 6IF 6IK 6IL 6IN AAJGR AAWTH ADFMO ALMA_UNASSIGNED_HOLDINGS BEFXN BFFAM BGNUA BKEBE BPEOZ CBEJK IEGSK IERZE OCL RIE RIL RCLKO |
| ID | FETCH-LOGICAL-i246t-c9e973df051f086cd1acc90d0499876fde4a62e7ac7b6ac872ca3e2a0032105d3 |
| IEDL.DBID | RIE |
| ISBN | 1908320737 9781908320735 |
| ISICitedReferencesCount | 3 |
| ISICitedReferencesURI | http://www.webofscience.com/api/gateway?GWVersion=2&SrcApp=Summon&SrcAuth=ProQuest&DestLinkType=CitingArticles&DestApp=WOS_CPL&KeyUT=000406026800051&url=https%3A%2F%2Fcvtisr.summon.serialssolutions.com%2F%23%21%2Fsearch%3Fho%3Df%26include.ft.matches%3Dt%26l%3Dnull%26q%3D |
| IngestDate | Fri Aug 01 16:38:22 EDT 2025 Wed Aug 27 02:07:49 EDT 2025 |
| IsDoiOpenAccess | true |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-LOGICAL-i246t-c9e973df051f086cd1acc90d0499876fde4a62e7ac7b6ac872ca3e2a0032105d3 |
| OpenAccessLink | http://hdl.handle.net/10071/25503 |
| PageCount | 6 |
| ParticipantIDs | rcaap_revistas_10071_25503 ieee_primary_7856724 |
| PublicationCentury | 2000 |
| PublicationDate | 2016-Dec. 2016 |
| PublicationDateYYYYMMDD | 2016-12-01 2016-01-01 |
| PublicationDate_xml | – month: 12 year: 2016 text: 2016-Dec. |
| PublicationDecade | 2010 |
| PublicationTitle | ICITST : 2016 11th International Conference for Internet Technology and Secured Transactions |
| PublicationTitleAbbrev | ICITST |
| PublicationYear | 2016 |
| Publisher | Infonomics Society IEEE |
| Publisher_xml | – name: Infonomics Society – name: IEEE |
| SSID | ssj0001968122 |
| Score | 1.633563 |
| Snippet | Currently, web and mobile-based systems exchange information with other services, mostly through APIs that extend the functionality and enable multipart... |
| SourceID | rcaap ieee |
| SourceType | Publisher |
| StartPage | 329 |
| SubjectTerms | API Confidentiality Cryptography Encoding HTTPS Instant messaging Integrity JSON Protocols Security SSL/TLS World Wide Web XML |
| Title | Secure Javascript Object Notation (SecJSON) Enabling granular confidentiality and integrity of JSON documents |
| URI | https://ieeexplore.ieee.org/document/7856724 http://hdl.handle.net/10071/25503 |
| WOSCitedRecordID | wos000406026800051&url=https%3A%2F%2Fcvtisr.summon.serialssolutions.com%2F%23%21%2Fsearch%3Fho%3Df%26include.ft.matches%3Dt%26l%3Dnull%26q%3D |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwlV07b8IwELYAdehEW6gKfchDh1ZqIHGCncyIqqAqIEEltsixLxVDE8Sjv79nJ0CHLt0SKRdZZ9_T390R8ihQ74MSzHFlwJxAAjhp6qeOGrhKgkQjldmdfhdxHC6X0axGXo61MABgwWfQM4_2Ll8Xam9SZX0RDrhgQZ3UheBlrdYpnxKZTlqsaizkuVF_PBwv5guD3uK9irIaoYKO6EZJuf5lSV6b_1vDBWmfSvLo7GhsLkkN8ivSPMxkoJWItsiXTaADnUiDMTUagU5Tk2uhcVHeutMn_GQyn8bPdGQKp_B39BMtlsGjUoyOs5Wt3bX-OZW5pmVHCfNWZNQQ0sMyt23y8TpaDN-caqSCs2IB3zkqgkj4OkNRzDCYUdqTSkWuNoEP6sVMQyA5AyGVSLlUoWBK-sAkyj7GhgPtX5NGXuRwQ6jna0MqOJfo9Wkd4nEIpavQJeQc3cYOaRnuJeuya0ZSMa5Dupb3iUExowO8tV2TvQRDG9fv_k1zS87NLpYokjvS2G32cE_O1Pdutd082HPwA3cutKo |
| linkProvider | IEEE |
| linkToHtml | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwlV3NT8IwFH9BNNETKhjBrx48aOJwdKPdzgQCiIMETLgtXdsZDgLhw7_f126ABy_etmRvaV77Pvt77wE8ctT7WnLquMKnji-0dpLESxzZdKXQAo1Uand6wKMomE7DUQFe9rUwWmsLPtN182jv8tVCbk2q7JUHTcapfwTHTd-nblatdciohKaXFs1bCzXc8LXX6k3GE4PfYvWcNh-igq7oSgqx_GVLOqX_reIcKoeiPDLam5sLKOj5JZR2UxlILqRl-LIpdE36wqBMjU4gw8RkW0i0yO7dyRN-0h8Po2fSNqVT-DvyiTbLIFIJxsfpzFbvWg-diLkiWU8J87ZIiSEku2WuK_DRaU9aXScfquDMqM82jgx1yD2VojCmGM5I1RBShq4yoQ9qxlRpXzCquZA8YUIGnErhaSpQ-jE6bCrvCorzxVxfA2l4ypByxgT6fUoFeCAC4Up0ChlDx7EKZcO9eJn1zYhzxlWhZnkfGxwzusBr2ze5EWNw43q1v2ke4LQ7eR_Eg170dgNnZkczTMktFDerrb6DE_m9ma1X9_ZM_AAH3rfx |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Abook&rft.genre=proceeding&rft.title=ICITST+%3A+2016+11th+International+Conference+for+Internet+Technology+and+Secured+Transactions&rft.atitle=Secure+Javascript+Object+Notation+%28SecJSON%29%3A+Enabling+granular+confidentiality+and+integrity+of+JSON+documents&rft.au=Santos%2C+T.&rft.au=Serr%C3%A3o%2C+C.&rft.date=2016-01-01&rft.pub=IEEE&rft.isbn=9781908320735&rft_id=info:doi/10.1109%2FICITST.2016.7856724&rft.externalDBID=n%2Fa&rft.externalDocID=10071_25503 |
| thumbnail_l | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9781908320735/lc.gif&client=summon&freeimage=true |
| thumbnail_m | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9781908320735/mc.gif&client=summon&freeimage=true |
| thumbnail_s | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9781908320735/sc.gif&client=summon&freeimage=true |