DOCSLIB.ORG

XML Projects in Japan and Fujitsu's Approach to Xlink/Xpointer

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
XML Projects in Japan and Fujitsu's Approach to Xlink/Xpointer UDC 621.395.74:651.55:681.32 XML Projects in Japan and Fujitsu’s Approach to XLink/XPointer VToshimitsu Suzuki VMasatomo Goto (Manuscript received June 2, 2000) The Extensible Markup Language (XML)1) is a markup language developed in response to a recommendation by the World Wide Web Consortium (W3C).2) It is a meta lan- guage used to make an information structure. XML’s original specification is the Stan- dard Generalized Markup Language (SGML).3) Now, XML is used not only as a format language but also as a framework in various areas beyond the SGML field. This paper describes the XML technology trends, the current state of XML technology, and some case studies in Japan and at Fujitsu. This paper also describes HyBrick,4) which is an XML/SGML browser that was demonstrated at SGML’97, and the XLink5)/XPointer6) technology. 1. Introduction verified through these experiments. The specification of XML has been in use by Up to now, XML has been related to infor- the W3C since 1996. XML version 1.0 was released mation technology (IT), and because of the IT as a W3C recommendation in February 1998. revolution it is becoming a secure part of the foun- XML is a meta language for marking up informa- dation of new IT systems. Last year, a lineup of tion. XML’s original specification is the Standard XML parsers and other XML basic software ap- Generalized Markup Language (SGML), which is peared, establishing a development environment used to mark up documents for archiving and re- for application software. In addition, the W3C is use. XML is used not only as a markup language determining XML-related peripheral specifica- but also as a framework in various areas beyond tions. The year 2000 is expected to be the year of the SGML field. full XML implementation. The use of XML is more advanced in the U.S. In 1997, Fujitsu Laboratories demonstrated and European countries because there is a much the world’s first XML/SGML browser, HyBrick, at larger body of text documents in those countries SGML’97 and published its first XML technical and it is easy to adapt the XML technology for the book. Since then, we have been committed to XML World Wide Web and its contents. In Japan, XML and its broad implementation. (HyBrick comes applications have been designed and developed, from work we started in 1994 to produce an orig- and newspapers and magazines have carried XML inal multimedia browser.) We have been seeking articles since the end of 1997. Last year, many to develop XML specifications both independent- experiments that demonstrated uses of XML, for ly and as a member of the World Wide Web example, in financial trading and EDI trading, Consortium (W3C) working group responsible for were conducted with the government of Japan. link specifications. This paper explains the cur- Although XML has yet to be applied to actual sys- rent status of XML in Japan and the activities, tems, various methods for its application are being study results, and future direction of Fujitsu and FUJITSU Sci. Tech. J.,36,2,pp.175-184(December 2000) 175 T. Suzuki et al.: XML Projects in Japan and Fujitsu’s Approach to XLink/XPointer Fujitsu Laboratories in this area. – XLink/XPointer/XML Base11)/XInclude12) for defining links, 2. XML and related work – XPath13) for specifying XML structure appli- XML-related specifications are mainly deter- cation positions, and mined by the W3C and the Internet Engineering – XML Query Language (XQL) and XML-QL14) Task Force (IETF)7) and are mostly based on XML as interfaces for easy retrieval from XML doc- Version 1.0, which was recommended in Febru- uments. ary 1998. From the beginning of the design stage, The basic specifications include the Resource it has been expected that XML will become a pro- Description Framework (RDF),15) which is a meta- tocol having the advantages of HTML and SGML, information description framework for retrieval but not their disadvantages. Consequently, soft- and content rating. ware manufacturers immediately started to develop software that supports XML. The first 2.2 Application-dependent specifications XML-supporting software to be released was the Some examples of application-dependent XML-based Channel Definition Format (CDF)8) specifications are: from Microsoft. – Scalable Vector Graphics (SVG)16) for the Microsoft installed this technology in their graphic format, Web browser, Internet Explorer (IE), to realize the – XHTML17) for the document format, functions for a new information push service called – Synchronized Multimedia Integration Lan- “Active Channel.” As a result, the number of XML guage (SMIL),18) and studies and implementations began to increase at – Mathematical Markup Language (MathML).19) a fast pace, mainly in the U.S. Many companies In Japan, application-dependent XML speci- noticed the advantages offered by XML and start- fications are used, for example, for electronic books ed putting them into their applications. (JepaX), documents submitted to the Ministry of However, XML does not provide adequate Welfare about new drugs that companies want to functions to satisfy all of the different kinds of market, legal information, and security market requirements for user applications. Therefore, definitions. The Japan Electronic Publishing related specifications were proposed to compen- Association (JEPA) is responsible for JepaX.20) In sate for functions that were lacking and the addition, Japanese companies are leading the specifications were examined extensively. The study of domestic and international XML appli- specifications that extend the ability of XML cations that add information to static images can be classified as basic specifications, (Dig35).21) application-dependent specifications, or framework specifications. 2.3 Framework specifications XML. ORG,22) which is hosted by the Organi- 2.1 Basic specifications zation for the Advancement of Structured The basic specifications supporting XML are: Information Standards (OASIS),23) provides repos- – Namespaces for using several document type itory and registry functions for multiple DTDs. definitions (DTDs) in the same XML document, A similar framework is BizTalk24) hosted by – schema for extending the definitions of ele- Microsoft. This framework defines the message ments and definitions, format between individual systems. – Extensible Stylesheet Language (XSL)9)/XSL A variety of industries are promoting the Transformation (XSLT)10) for defining style standardization of their own vocabularies as in- sheets, dustrial frameworks. Some typical examples are 176 FUJITSU Sci. Tech. J.,36, 2,(December 2000) T. Suzuki et al.: XML Projects in Japan and Fujitsu’s Approach to XLink/XPointer cXML,25) ebXML,26) eCo,27) and CBL.28) Various in- appears to be more convenient than the conven- dustries in Japan have also started this process tional paper-based systems. of standardization, but not on a full scale. The Japanese Standard Association (JIS)29) has recog- 3.2 Electronic catalog auto-collection nized the necessity of standard vocabularies and system has started looking for a common framework. NTT Communications is experimenting with an online auto-collection system for XML-based 3. XML in Japan liquor catalogs that breweries create and place on The New Media Development Association their Web sites.31) The system automatically col- (NMDA)30) in Japan constructed an electronic ap- lects the catalogs and then provides optimum plication system in 1998; this was the first merchandise information according to retrieval example of XML system construction and opera- requests from customers. tion. Since then, many other experiments have been carried out. Furthermore, XML-only mail- 3.3 Information delivery service ing lists have been set up and run on a volunteer An XML-based personal information deliv- basis and the first vendor of XML-dedicated soft- ery service32) is currently being demonstrated by ware has appeared. These events have generated Dai Nippon Printing Co., Ltd., Otsuka Shokai Co., even more XML activity. Details about some of Ltd., and NTT. The purpose of this service is to the attempts to establish general support of XML customize financial information for personal use in Japan are given below. and supply that information to individual and in- stitutional investors. This service features style 3.1 Project for electronic applications sheets that are used to customize the layout of and notices in administrative contents for each user and embedded links and procedures pointers in the supplied information. This enables The project for electronic applications and no- each user to have continuous access to the latest tices is aimed at developing a highly efficient information. system that can electronically process a series of administrative procedures. The procedures are 3.4 Digital contents (BML) for creating, filing, and examining written applica- television sets tions; registering data; and sending notifications The Broadcast Markup Language (BML) is after receiving the applications. In this project, a an example of an XML application in a TV- database consisting of application forms was writ- contents format for satellite digital broadcasting. ten in XML. Fujitsu Laboratories participated in Fujitsu is also a member of the BML project. The this NMDA project and took charge of the pro- U.S. is creating BHTML, and the Association of cessing section for application form input and Radio Industries and Businesses (ARIB)33) in display. We developed a function for XML display Japan is creating a protocol. in an existing browser and XML input from an The ARIB proposed the first BML draft in existing browser. The system developed in this the middle of 1999 to establish acceptance of the project was proved to be effective and practical in final specifications before full-scale implementa- an experiment at the Database Center for the tion toward the end of 2000. project. However, electronic applications are not BML produces contents using XML-based permitted under existing governmental rules and XHTML and XSLT.
Load more

Recommended publications
  • Toward the Discovery and Extraction of Money Laundering Evidence from Arbitrary Data Formats Using Combinatory Reductions
    Toward the Discovery and Extraction of Money Laundering Evidence from Arbitrary Data Formats using Combinatory Reductions Alonza Mumford, Duminda Wijesekera George Mason University [email protected], [email protected] Abstract—The evidence of money laundering schemes exist undetected in the electronic files of banks and insurance firms scattered around the world. Intelligence and law enforcement analysts, impelled by the duty to discover connections to drug cartels and other participants in these criminal activities, require the information to be searchable and extractable from all types of data formats. In this overview paper, we articulate an approach — a capability that uses a data description language called Data Format Description Language (DFDL) extended with higher- order functions as a host language to XML Linking (XLink) and XML Pointer (XPointer) languages in order to link, discover and extract financial data fragments from raw-data stores not co- located with each other —see figure 1. The strength of the ap- Fig. 1. An illustration of an anti-money laundering application that connects proach is grounded in the specification of a declarative compiler to multiple data storage sites. In this case, the native data format at each site for our concrete language using a higher-order rewriting system differs, and a data description language extended with higher-order functions with binders called Combinatory Reduction Systems Extended and linking/pointing abstractions are used to extract data fragments based on (CRSX). By leveraging CRSX, we anticipate formal operational their ontological meaning. semantics of our language and significant optimization of the compiler. Index Terms—Semantic Web, Data models, Functional pro- II.
    [Show full text]
  • O'reilly Xpath and Xpointer.Pdf
    XPath and XPointer John E. Simpson Publisher: O'Reilly First Edition August 2002 ISBN: 0-596-00291-2, 224 pages Referring to specific information inside an XML document is a little like finding a needle in a haystack. XPath and XPointer are two closely related Table of Contents languages that play a key role in XML processing by allowing developers Index to find these needles and manipulate embedded information. By the time Full Description you've finished XPath and XPointer, you'll know how to construct a full Reviews XPointer (one that uses an XPath location path to address document Reader reviews content) and completely understand both the XPath and XPointer features it Errata uses. 1 Table of Content Table of Content ............................................................................................................. 2 Preface............................................................................................................................. 4 Who Should Read This Book?.................................................................................... 4 Who Should Not Read This Book?............................................................................. 4 Organization of the Book............................................................................................ 5 Conventions Used in This Book ................................................................................. 5 Comments and Questions ........................................................................................... 6 Acknowledgments......................................................................................................
    [Show full text]
  • Annotea: an Open RDF Infrastructure for Shared Web Annotations
    Proceedings of the WWW 10th International Conference, Hong Kong, May 2001. Annotea: An Open RDF Infrastructure for Shared Web Annotations Jos´eKahan,1 Marja-Riitta Koivunen,2 Eric Prud’Hommeaux2 and Ralph R. Swick2 1 W3C INRIA Rhone-Alpes 2 W3C MIT Laboratory for Computer Science {kahan, marja, eric, swick}@w3.org Abstract. Annotea is a Web-based shared annotation system based on a general-purpose open RDF infrastructure, where annotations are modeled as a class of metadata.Annotations are viewed as statements made by an author about a Web doc- ument. Annotations are external to the documents and can be stored in one or more annotation servers.One of the goals of this project has been to re-use as much existing W3C technol- ogy as possible. We have reacheditmostlybycombining RDF with XPointer, XLink, and HTTP. We have also implemented an instance of our system using the Amaya editor/browser and ageneric RDF database, accessible through an Apache HTTP server. In this implementation, the merging of annotations with documents takes place within the client. The paper presents the overall design of Annotea and describes some of the issues we have faced and how we have solved them. 1Introduction One of the basic milestones in the road to a Semantic Web [22] is the as- sociation of metadata to content. Metadata allows the Web to describe properties about some given content, even if the medium of this content does not directly provide the necessary means to do so. For example, ametadata schema for digital photos [15] allows the Web to describe, among other properties, the camera model used to take a photo, shut- ter speed, date, and location.
    [Show full text]
  • Advanced XHTML Plug-In for Iserver
    Advanced XHTML Plug-in for iServer Semester work Stefan Malaer <[email protected]> Prof. Dr. Moira C. Norrie Dr. Beat Signer Global Information Systems Group Institute of Information Systems Department of Computer Science 12th October 2005 Copyright © 2005 Global Information Systems Group. Abstract The iServer architecture is an extensible cross-media information platform enabling links between arbitrary typed objects. It provides some fundamental link concepts and is based on a plug-in mechanism to support various media types. The goal of this semester work was to develop a XHTML plug-in for iServer which enables links from XHTML documents to other XHTML documents as well as parts of them. The resulting iServext is a Firefox extension for iServer which provides visualization and authoring functionality for XHTML links. Furthermore, we investigated research in the area of link augmentation and provide an overview of recent technologies. iii iv Contents 1 Introduction 1 2 Augmented Linking 3 2.1 Need for augmented linking ........................... 3 2.1.1 Current link model ............................ 3 2.1.2 Approaches for link augmentation ................... 5 2.2 Related work .................................... 6 2.2.1 Chimera .................................. 6 2.2.2 Hyper-G/Hyperwave ........................... 6 2.2.3 Distributed Link Service ......................... 6 2.2.4 DHM/WWW and Extend Work ..................... 6 2.2.5 HyperScout ................................. 7 2.2.6 Link Visualization with DHTML ..................... 7 2.2.7 Amaya project ............................... 8 2.3 Link integration and authoring ......................... 9 2.4 Link visualization .................................. 11 2.4.1 Today’s link visualization ......................... 11 2.4.2 Possible presentations of link information .............. 11 2.4.3 Examples of link visualization .....................
    [Show full text]
  • Dynamic and Interactive R Graphics for the Web: the Gridsvg Package
    JSS Journal of Statistical Software MMMMMM YYYY, Volume VV, Issue II. http://www.jstatsoft.org/ Dynamic and Interactive R Graphics for the Web: The gridSVG Package Paul Murrell Simon Potter The Unversity of Auckland The Unversity of Auckland Abstract This article describes the gridSVG package, which provides functions to convert grid- based R graphics to an SVG format. The package also provides a function to associate hyperlinks with components of a plot, a function to animate components of a plot, a function to associate any SVG attribute with a component of a plot, and a function to add JavaScript code to a plot. The last two of these provides a basis for adding interactivity to the SVG version of the plot. Together these tools provide a way to generate dynamic and interactive R graphics for use in web pages. Keywords: world-wide web, graphics, R, SVG. 1. Introduction Interactive and dynamic plots within web pages are becomingly increasingly popular, as part of a general trend towards making data sets more open and accessible on the web, for example, GapMinder (Rosling 2008) and ManyEyes (Viegas, Wattenberg, van Ham, Kriss, and McKeon 2007). The R language and environment for statistical computing and graphics (R Development Core Team 2011) has many facilities for producing plots, and it can produce graphics formats that are suitable for including in web pages, but the core graphics facilities in R are largely focused on static plots. This article describes an R extension package, gridSVG, that is designed to embellish and transform a standard, static R plot and turn it into a dynamic and interactive plot that can be embedded in a web page.
    [Show full text]
  • Rdfa in XHTML: Syntax and Processing Rdfa in XHTML: Syntax and Processing
    RDFa in XHTML: Syntax and Processing RDFa in XHTML: Syntax and Processing RDFa in XHTML: Syntax and Processing A collection of attributes and processing rules for extending XHTML to support RDF W3C Recommendation 14 October 2008 This version: http://www.w3.org/TR/2008/REC-rdfa-syntax-20081014 Latest version: http://www.w3.org/TR/rdfa-syntax Previous version: http://www.w3.org/TR/2008/PR-rdfa-syntax-20080904 Diff from previous version: rdfa-syntax-diff.html Editors: Ben Adida, Creative Commons [email protected] Mark Birbeck, webBackplane [email protected] Shane McCarron, Applied Testing and Technology, Inc. [email protected] Steven Pemberton, CWI Please refer to the errata for this document, which may include some normative corrections. This document is also available in these non-normative formats: PostScript version, PDF version, ZIP archive, and Gzip’d TAR archive. The English version of this specification is the only normative version. Non-normative translations may also be available. Copyright © 2007-2008 W3C® (MIT, ERCIM, Keio), All Rights Reserved. W3C liability, trademark and document use rules apply. Abstract The current Web is primarily made up of an enormous number of documents that have been created using HTML. These documents contain significant amounts of structured data, which is largely unavailable to tools and applications. When publishers can express this data more completely, and when tools can read it, a new world of user functionality becomes available, letting users transfer structured data between applications and web sites, and allowing browsing applications to improve the user experience: an event on a web page can be directly imported - 1 - How to Read this Document RDFa in XHTML: Syntax and Processing into a user’s desktop calendar; a license on a document can be detected so that users can be informed of their rights automatically; a photo’s creator, camera setting information, resolution, location and topic can be published as easily as the original photo itself, enabling structured search and sharing.
    [Show full text]
  • Bibliography of Erik Wilde
    dretbiblio dretbiblio Erik Wilde's Bibliography References [1] AFIPS Fall Joint Computer Conference, San Francisco, California, December 1968. [2] Seventeenth IEEE Conference on Computer Communication Networks, Washington, D.C., 1978. [3] ACM SIGACT-SIGMOD Symposium on Principles of Database Systems, Los Angeles, Cal- ifornia, March 1982. ACM Press. [4] First Conference on Computer-Supported Cooperative Work, 1986. [5] 1987 ACM Conference on Hypertext, Chapel Hill, North Carolina, November 1987. ACM Press. [6] 18th IEEE International Symposium on Fault-Tolerant Computing, Tokyo, Japan, 1988. IEEE Computer Society Press. [7] Conference on Computer-Supported Cooperative Work, Portland, Oregon, 1988. ACM Press. [8] Conference on Office Information Systems, Palo Alto, California, March 1988. [9] 1989 ACM Conference on Hypertext, Pittsburgh, Pennsylvania, November 1989. ACM Press. [10] UNIX | The Legend Evolves. Summer 1990 UKUUG Conference, Buntingford, UK, 1990. UKUUG. [11] Fourth ACM Symposium on User Interface Software and Technology, Hilton Head, South Carolina, November 1991. [12] GLOBECOM'91 Conference, Phoenix, Arizona, 1991. IEEE Computer Society Press. [13] IEEE INFOCOM '91 Conference on Computer Communications, Bal Harbour, Florida, 1991. IEEE Computer Society Press. [14] IEEE International Conference on Communications, Denver, Colorado, June 1991. [15] International Workshop on CSCW, Berlin, Germany, April 1991. [16] Third ACM Conference on Hypertext, San Antonio, Texas, December 1991. ACM Press. [17] 11th Symposium on Reliable Distributed Systems, Houston, Texas, 1992. IEEE Computer Society Press. [18] 3rd Joint European Networking Conference, Innsbruck, Austria, May 1992. [19] Fourth ACM Conference on Hypertext, Milano, Italy, November 1992. ACM Press. [20] GLOBECOM'92 Conference, Orlando, Florida, December 1992. IEEE Computer Society Press. http://github.com/dret/biblio (August 29, 2018) 1 dretbiblio [21] IEEE INFOCOM '92 Conference on Computer Communications, Florence, Italy, 1992.
    [Show full text]
  • RDF/XML: RDF Data on the Web
    Developing Ontologies • have an idea of the required concepts and relationships (ER, UML, ...), • generate a (draft) n3 or RDF/XML instance, • write a separate file for the metadata, • load it into Jena with activating a reasoner. • If the reasoner complains about an inconsistent ontology, check the metadata file alone. If this is consistent, and it complains only when also data is loaded: – it may be due to populating a class whose definition is inconsistent and that thus must be empty. – often it is due to wrong datatypes. Recall that datatype specification is not interpreted as a constraint (that is violated for a given value), but as additional knowledge. 220 Chapter 6 RDF/XML: RDF Data on the Web • An XML representation of RDF data for providing RDF data on the Web could be done straightforwardly as a “holds” relation mapped according to SQLX (see ⇒ next slide). • would be highly redundant and very different from an XML representation of the same data • search for a more similar way: leads to “striped XML/RDF” – data feels like XML: can be queried by XPath/Query and transformed by XSLT – can be parsed into an RDF graph. • usually: provide RDF/XML data to an agreed RDFS/OWL ontology. 221 A STRAIGHTFORWARD XML REPRESENTATION OF RDF DATA Note: this is not RDF/XML, but just some possible representation. • RDF data are triples, • their components are either URIs or literals (of XML Schema datatypes), • straightforward XML markup in SQLX style, • since N3 has a term structure, it is easy to find an XML markup. <my-n3:rdf-graph xmlns:my-n3="http://simple-silly-rdf-xml.de#"> <my-n3:triple> <my-n3:subject type="uri">foo://bar/persons/john</my-n3:subject> <my-n3:predicate type="uri">foo://bar/meta#name</my-n3:predicate> <my-n3:object type="http://www.w3.org/2001/XMLSchema#string">John</my-n3:object> </my-n3 triple> <my-n3:triple> ..
    [Show full text]
  • Introduction to Scalable Vector Graphics
    Introduction to Scalable Vector Graphics Presented by developerWorks, your source for great tutorials ibm.com/developerWorks Table of Contents If you're viewing this document online, you can click any of the topics below to link directly to that section. 1. Introduction.............................................................. 2 2. What is SVG?........................................................... 4 3. Basic shapes............................................................ 10 4. Definitions and groups................................................. 16 5. Painting .................................................................. 21 6. Coordinates and transformations.................................... 32 7. Paths ..................................................................... 38 8. Text ....................................................................... 46 9. Animation and interactivity............................................ 51 10. Summary............................................................... 55 Introduction to Scalable Vector Graphics Page 1 of 56 ibm.com/developerWorks Presented by developerWorks, your source for great tutorials Section 1. Introduction Should I take this tutorial? This tutorial assists developers who want to understand the concepts behind Scalable Vector Graphics (SVG) in order to build them, either as static documents, or as dynamically generated content. XML experience is not required, but a familiarity with at least one tagging language (such as HTML) will be useful. For basic XML
    [Show full text]
  • Progressive Imagery with Scalable Vector Graphics -..:: VCG Rostock
    Progressive imagery with scalable vector graphics Georg Fuchsa, Heidrun Schumanna, and Ren´eRosenbaumb aUniversity of Rostock, Institute for Computer Science, 18051 Rostock, Germany; bUC Davis, Institute of Data Analysis & Visualization, Davis, CA 95616 U.S.A. ABSTRACT Vector graphics can be scaled without loss of quality, making them suitable for mobile image communication where a given graphics must be typically represented in high quality for a wide range of screen resolutions. One problem is that file size increases rapidly as content becomes more detailed, which can reduce response times and efficiency in mobile settings. Analog issues for large raster imagery have been overcome using progressive refinement schemes. Similar ideas have already been applied to vector graphics, but an implementation that is compliant to a major and widely adopted standard is still missing. In this publication we show how to provide progressive refinement schemes based on the extendable Scalable Vector Graphics (SVG) standard. We propose two strategies: decomposition of the original SVG and incremental transmission using (1) several linked files and (2) element-wise streaming of a single file. The publication discusses how both strategies are employed in mobile image communication scenarios where the user can interactively define RoIs for prioritized image communication, and reports initial results we obtained from a prototypically implemented client/server setup. Keywords: Progression, Progressive refinement, Scalable Vector Graphics, SVG, Mobile image communication 1. INTRODUCTION Vector graphics use graphic primitives such as points, lines, curves, and polygons to represent image contents. As those primitives are defined by means of geometric coordinates that are independent of actual pixel resolutions, vector graphics can be scaled without loss of quality.
    [Show full text]
  • XML for Java Developers G22.3033-002 Course Roadmap
    XML for Java Developers G22.3033-002 Session 1 - Main Theme Markup Language Technologies (Part I) Dr. Jean-Claude Franchitti New York University Computer Science Department Courant Institute of Mathematical Sciences 1 Course Roadmap Consider the Spectrum of Applications Architectures Distributed vs. Decentralized Apps + Thick vs. Thin Clients J2EE for eCommerce vs. J2EE/Web Services, JXTA, etc. Learn Specific XML/Java “Patterns” Used for Data/Content Presentation, Data Exchange, and Application Configuration Cover XML/Java Technologies According to their Use in the Various Phases of the Application Development Lifecycle (i.e., Discovery, Design, Development, Deployment, Administration) e.g., Modeling, Configuration Management, Processing, Rendering, Querying, Secure Messaging, etc. Develop XML Applications as Assemblies of Reusable XML- Based Services (Applications of XML + Java Applications) 2 1 Agenda XML Generics Course Logistics, Structure and Objectives History of Meta-Markup Languages XML Applications: Markup Languages XML Information Modeling Applications XML-Based Architectures XML and Java XML Development Tools Summary Class Project Readings Assignment #1a 3 Part I Introduction 4 2 XML Generics XML means eXtensible Markup Language XML expresses the structure of information (i.e., document content) separately from its presentation XSL style sheets are used to convert documents to a presentation format that can be processed by a target presentation device (e.g., HTML in the case of legacy browsers) Need a
    [Show full text]
  • SVG Exploiting Browsers Without Image Parsing Bugs
    SVG Exploiting Browsers without Image Parsing Bugs Rennie deGraaf iSEC Partners 07 August 2014 Rennie deGraaf (iSEC Partners) SVG Security BH USA 2014 1 / 55 Outline 1 A brief introduction to SVG What is SVG? Using SVG with HTML SVG features 2 Attacking SVG Attack surface Security model Security model violations 3 Content Security Policy A brief introduction CSP Violations 4 Conclusion Rennie deGraaf (iSEC Partners) SVG Security BH USA 2014 2 / 55 A brief introduction to SVG What is SVG? What is SVG? Scalable Vector Graphics XML-based W3C (http://www.w3.org/TR/SVG/) Development started in 1999 Current version is 1.1, published in 2011 Version 2.0 is in development First browser with native support was Konqueror in 2004; IE was the last major browser to add native SVG support (in 2011) Rennie deGraaf (iSEC Partners) SVG Security BH USA 2014 3 / 55 A brief introduction to SVG What is SVG? A simple example Source code <? xml v e r s i o n = ” 1 . 0 ” encoding = ”UTF-8” standalone = ” no ” ? > <svg xmlns = ” h t t p : // www. w3 . org / 2 0 0 0 / svg ” width = ” 68 ” h e i g h t = ” 68 ” viewBox = ”-34 -34 68 68 ” v e r s i o n = ” 1 . 1 ” > < c i r c l e cx = ” 0 ” cy = ” 0 ” r = ” 24 ” f i l l = ”#c8c8c8 ” / > < / svg > Rennie deGraaf (iSEC Partners) SVG Security BH USA 2014 4 / 55 A brief introduction to SVG What is SVG? A simple example As rendered Rennie deGraaf (iSEC Partners) SVG Security BH USA 2014 5 / 55 A brief introduction to SVG What is SVG? A simple example I am not an artist.
    [Show full text]