A host of new standards will bolster authentication, authorization, encryption, and key management. Kerberos Kerberos is an authentication technology that uses cryptographic tokens to identify users and can be used to authenticate Web service users. SAML (Security Assertion Markup Language) SAML is an XML-based mechanism to exchange authentication and authorization information that provides single sign-on capabilities for Web services. XML Signature The XML Signature specification defines how to represent digital signatures in XML, providing the capability to digitally sign entire documents or specific sections. XML Encryption Similar to XML Signature, this specification defines how to encrypt and decrypt documents, whether in their entirety or by section. XKMS (XML Key Management Specification) This specification defines how to register and distribute public keys, addressing the key distribution problems in transactions where the parties have not previously communicated. XACML (Extensible Access Control Markup Language) XACML specifies how to express policies for information access over a network. Digital rights management is included here. Software Development