Security Concepts for the WWW

  • Peter Lipp
  • Vesna Hassler
Part of the IFIP Advances in Information and Communication Technology book series (IFIPAICT)


This paper gives an overview of the existing World Wide Web security concepts. For each proposal we give a short description of the most important properties and discuss them briefly. The concepts are divided into three groups according to their relative position to the HTTP layer. A comparison of some of the properties of various concepts is given as well.


World Wide Web Security 


  1. [1]
    Baize,E. and D. Pinkas, Simple GSS-API Negotiation Mechanism,February 1996 draft-ietf-cat-snego-01.txtGoogle Scholar
  2. [2]
    Benaloh, J. et. al., Private Communication Technology Protocol,, September 1995 Google Scholar
  3. [3]
    Freier, A.O., P. Karlton and P.C. Kocher, SSL Version 3. 0, draft-freier-ssl-version3–00.txt, December 1995Google Scholar
  4. [4]
    Khare, R., PEP: An Extension Mechanism for HTTP/1.1, W3C Working Draft, February 1996,
  5. [5]
    Khare, R., SEA: A Security Extension Architecture for HTTP/1.x, World-Wide-WebConsortium Working Draft,URL:, January 1996Google Scholar
  6. [6]
    Kolletzki, S., Privacy Enhanced Mail for WWW, Proceedings of the Third International World Wide Web Conference, April 1995.Google Scholar
  7. [7]
    Rescorla, E. and A. Schiffman, The Secure HyperText Transfer Protocol,draft-ietf-wts-shttp-01.txt, February 1996Google Scholar
  8. [8]
    Rosenthal, D., Use of the GSS-API for the Web Security,draft-ietf-wts-gssapi-00.txt, November 1995Google Scholar
  9. [9]
    Thompson, D., Common Client Interface Protocol Specification, April 1995Google Scholar
  10. [10.
    Weeks, J., A. Cain and B. Sanderson, CCI-Based Web Security: A Design Using PGP, URL:http: //sdg. ncsa. uiu c. edu/~ j weeks/www4/paper/current_rev. htmlGoogle Scholar
  11. [11]
    Young, E.A. and T.J. Hudson, SSLeay and SSLapps FAQ,URL:http : // /ftp/CryptoGoogle Scholar
  12. [l2]
    Zimmerman, P., The Official PGP User’s Guide, MIT Press, Cambridge Massachussets, 1995Google Scholar

Copyright information

© IFIP International Federation for Information Processing 1996

Authors and Affiliations

  • Peter Lipp
    • 1
  • Vesna Hassler
    • 1
  1. 1.Institute for Applied Information Processing and CommunicationsGraz University of TechnologyGrazAustria

Personalised recommendations