XML alone won't cure Web security ills

SSO (single sign-on) should have been solved for the Web circa 1997. At that time, all the major browsers could acquire and present digital IDs, and servers could read them. Five years later, the de facto standard for e-commerce -- and now Web services -- remains name and password authentication. [Full story at InfoWorld.com.]

Former URL: http://weblog.infoworld.com/udell/2002/10/07.html#a436