DOCSLIB.ORG

(12) United States Patent (10) Patent No.: US 8,739,262 B2 Harper Et Al

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
(12) United States Patent (10) Patent No.: US 8,739,262 B2 Harper Et Al US008739262B2 (12) United States Patent (10) Patent No.: US 8,739,262 B2 Harper et al. (45) Date of Patent: May 27, 2014 (54) TOKENIZED DATA SECURITY 2007/01922.45 A1 8/2007 Fisher et al. .................... 705/39 2007/0262138 A1* 11/2007 Somers et al. ................ 235,380 (75) Inventors: Glenn E. Harper, Grapevine, TX (US); 2008/0098001 A1 4/2008 Gupta et al. Kevin B. Bomar, Weatherford, TX (US) 2008/0209534 A1 8/2008 Keronen et al. W. S. s s 2008/0243701 A1 10, 2008 von Mueller 2008/0263.645 A1 10, 2008 Renter et al. (73) Assignee: Sabre GLBL Inc., Southlake, TX (US) 2009,0055531 A1 2/2009 Brown et al. 2009,0249082 A1 10, 2009 Mattsson (*) Notice: Subject to any disclaimer, the term of this 2010, 0191370 A1 ck 7/2010 Trevino et al. patent is extended or adjusted under 35 2010, O257612 A1* 10, 2010 McGuire et al. ................ T26/26 U.S.C. 154(b) bV 722 d 2010/0306552 All 12/2010 Levine et al. .S.C. 154(b) by ayS. 2011/0035390 A1 2/2011 Whitehouse 2011/OO78782 A1 3/2011 Chan et al. (21) Appl. No.: 12/973,725 2011/O125597 A1 5/2011 Oder, II et al. 2011 0154467 A1 6/2011 Bomar et al. Filed: Dec. 20, 2010 2011/O167255 A1 7/2011 Matzkel et al. (22) 2011/0247062 A1 10, 2011 Zonet al. 2011/0307710 A1 12/2011 McGuire et al. (65) Prior Publication Data 2012/0278339 A1 1 1/2012 Wang US 2011/0154466A1 Jun. 23, 2011 OTHER PUBLICATIONS Related U.S. Application Data U.S. Appl. No. 12/973,751, Final Office Action mailed Apr. 1, 2013. (60) Provisional application No. 61/288,102, filed on Dec. (Continued) 18, 2009. Primary Examiner – Michael S McNally (51) Int. C. (74) Attorney, Agent, or Firm — Alston & Bird LLP H04L 29/06 (2006.01) (57) ABSTRACT (52) U.S. C. USPC .............................................................. 726/9 Provided are devices, methods, systems, computer readable (58) Field of Classification Search storage media and other means for tokenizing data. In some USPC .............................................................. 726/9 examples, credit card numbers are tokenized using a pre See application file for complete search history. generated token map and absent the use of a networked data base that stores a relatively large quantity of credit card num References Cited bers in a central location. The token map may be generated by (56) a token map generator Such that the token map can be used by U.S. PATENT DOCUMENTS a tokenizer to replace a portion of an account number with a token, and by a detokenizer to replace the token with the 5,414,841 A 5/1995 Bingham et al. original portion of the account number. A pre-parser and 6.427,151 B1 7/2002 Chan et al. 7,770,789 B2 8/2010 Oder, II et al. parser may also be used to locate an account number and/or 2002/O120854 A1 8, 2002 LeVine et al. token in a message received over a network. 2005, 0182946 A1 8, 2005 Shatford 2007/0113171 A1 5, 2007 Behrens et al. 20 Claims, 17 Drawing Sheets 604 608 is there Establish a secute secure correction correction setween the between the source No source system and the system and the tokenizef tokerize Yes i. s 608 Send PAN orportion thereof Record establishment of from the source system to the H- secure connection in parser, tokenizer, etc. tokenizer's log s12 Call pre-parser andlorpre parse all data received to 626 locate PAN (see, e.g., FIG. 5) and record receipt of PAN 624 when found Recore tokanizatio 614 complete Parse PAN into substrings s (see, e.g., FIGS. 7A-8B) 622 ! 616 Send token and for resutting Caitokenizer andlor use at takenized PAN to the source Feastportion of PAN to andlor other system from the tookup token in token map tokenzer (see, e.g., FIGS. 7A-9) 820 S18 record lookup event Replace PAN or portion complete - thereof with retriewed token waiue (see, e.g., FIGS, 7A-9) US 8,739,262 B2 Page 2 (56) References Cited YYATOhcOuuEwcWGog80B5XDuWSbolU4w%3D%3D&tkin set=ygolJ6CUdWJcoW5ytp PsVdeH6FK7Bv3N18gKaliVp7xepzofCJ60VA%3D%3D >). OTHER PUBLICATIONS Shift4(R) Secure Payment Processing: 3 pages; available at <http:// www.shiftá.com/tokenization.cfm (visited Dec. 20, 2010). U.S. Appl. No. 12/973,751, Non-Final Office Action mailed Sep. 6, Dr. Heather Mark; Tokenization—The Best Way to Secure Data is to Not Store Data; Shift 4R. Secure Payment Processing; Aug. 2007; 8 2012. pages; Shift4 Corporation. “Protegrity Vaultless Tokenization.” Protegrity Corporation, Fre Ulf Mattsson; Protegrity. A New Scalable Approach to Data quently Asked Questions (FAQ) Sheet, 5 pages, (2012). Retrieved Tokenization; Nov. 2010; 11 pages; available at <http://www. from the Internet Aug. 7, 2012: <URL: http://www.protegrity.com/ globalsecuritymag.com/Ulf-Mattsson-CTO-Protegrity-A- wp-content/uploads/2012/04/Vaultless Tokenization FAQs New,2010.1128,20823.html> (visited Dec. 20, 2010). APRIL 12.pdf?mkt tok=3RkMMJWWfF9wsRokuq I ZKXonjHpfsX% 2B4u4kX7Hr08YyOEZ5VunJEUWy2 * cited by examiner U.S. Patent May 27, 2014 Sheet 1 of 17 US 8,739,262 B2 U.S. Patent May 27, 2014 Sheet 2 of 17 US 8,739,262 B2 ZLZ 0LZ | JOSS3OOJE `-voz ZOZ U.S. Patent May 27, 2014 Sheet 3 of 17 US 8,739,262 B2 U.S. Patent May 27, 2014 Sheet 4 of 17 US 8,739,262 B2 322 320 324 Generate a token map of a given size having a number of rows and columns, Encrypt and/or save where each row has an associated token map array location value 326 Yes Sequentially select a row of the token map to be assigned a token value , 340 328 all the rows been Generate a random number assigned a token 330 Go to the row having an array value that is the same as the random number randomly selected fow's token value the same as 338 Yes the sequentially selected row's Assign the array location sequentially value? selected array location value as the middle digit value of the randomly selected is the OW random number the same as he sequentially selected row token Value? Swap the token value of the randomly Selected row with the token value of the sequentially selected row FIG. 3B U.S. Patent May 27, 2014 Sheet 5 of 17 US 8,739,262 B2 350 Generate an array of predetermined size 352 Sequentially select an index to an element of the array 354 Generate a random number s the value at arrayrandom number equal to the sequentially Selected index Yes value? random number 362 Have equal to the value at all the arraysequentially selected index2 elements been swapped? Swap the values of arrayrandom number and 364 arraysequentially selected index Encrypt and/or save array 366 Create token map FIG. 3C using the array U.S. Patent May 27, 2014 Sheet 7 Of 17 US 8,739,262 B2 Receive message 522 number's length Message still at least 10 length greater than 10? No Search the message for a 520 string of numeric digits Remove digits from having a length of at least the number 10 and less than 20 digits Such a number found in the Does message? the string's ength match the length associated with the Vendor Code? 524 Execute confirmatory test(s) 526 Confirmatory test(s) passed? Yes FIG. 5 U.S. Patent May 27, 2014 Sheet 8 of 17 US 8,739,262 B2 6 606 ls there Establish a Secure SeCure Connection Connection between the between the Source source system and the system and the tokenizer tokenizer? Yes 61O 608 Send PAN or portion thereof Record establishment of from the source system to the Secure Connection in parser, tokenizer, etc. tokenizer's log 612 Call pre-parser and/or pre parse all data received to 626 locate PAN (see, e.g., FIG. 5) End and record receipt of PAN 624 When found 614 Record tokanization Parse PAN into substrings complete (see, e.g., FIGS. 7A-8B) 622 616 Send token and/or resulting Call tokenizer and/or use at tokenized PAN to the Source least portion of PAN to and/or other system from the lookup token in token map tokenizer (see, e.g., FIGS. 7A-9) 618 Replace PAN or portion Record lookup event thereof with retrieved token complete value (see, e.g., FIGS. 7A-9) FIG. 6 U.S. Patent May 27, 2014 Sheet 9 Of 17 US 8,739,262 B2 2)/,"$DIH U.S. Patent May 27, 2014 Sheet 11 of 17 US 8,739,262 B2 902 900 908 904 Determine an ls PAN numeric? N error has OCCurred Yes 910 PAN have at least 14 digits and eSS than 20 Does PAN have 13 PAN have 12 digits? Access token map Access token map Access token map for middle digit for middle digit for middle digit length of eight length of seven length of six Parse a PAN into prefix, middle digits and suffix Retrieve tokenized PAN from token map and convert middle digits to base36 tokenzied PAN U.S. Patent May 27, 2014 Sheet 12 of 17 US 8,739,262 B2 PAN have 19 digits? 932 928 Obtain two character token MOD the middle digits with the value 36 and append map version ID that result to front of tokenized Corresponds with current token map PAN 934 930 Construct token from prefix, Truncate last character of token map version ID, base36 prefix middle digits and suffix (see FIG. 9C) Length of Length of Length o prefix Version Tokenized suffix 14 2 2 6 4 15 3 2 6 4 16 4 2 6 4 17 5 2 6 4 18 6 2 6 4 19 6 2 6-1 4 FI G.
Load more

Recommended publications
  • Base64 Character Encoding and Decoding Modeling
    Base64 Character Encoding and Decoding Modeling Isnar Sumartono1, Andysah Putera Utama Siahaan2, Arpan3 Faculty of Computer Science,Universitas Pembangunan Panca Budi Jl. Jend. Gatot Subroto Km. 4,5 Sei Sikambing, 20122, Medan, Sumatera Utara, Indonesia Abstract: Security is crucial to maintaining the confidentiality of the information. Secure information is the information should not be known to the unreliable person, especially information concerning the state and the government. This information is often transmitted using a public network. If the data is not secured in advance, would be easily intercepted and the contents of the information known by the people who stole it. The method used to secure data is to use a cryptographic system by changing plaintext into ciphertext. Base64 algorithm is one of the encryption processes that is ideal for use in data transmission. Ciphertext obtained is the arrangement of the characters that have been tabulated. These tables have been designed to facilitate the delivery of data during transmission. By applying this algorithm, errors would be avoided, and security would also be ensured. Keywords: Base64, Security, Cryptography, Encoding I. INTRODUCTION Security and confidentiality is one important aspect of an information system [9][10]. The information sent is expected to be well received only by those who have the right. Information will be useless if at the time of transmission intercepted or hijacked by an unauthorized person [7]. The public network is one that is prone to be intercepted or hijacked [1][2]. From time to time the data transmission technology has developed so rapidly. Security is necessary for an organization or company as to maintain the integrity of the data and information on the company.
    [Show full text]
  • The Base16, Base32, and Base64 Data Encodings
    Network Working Group S. Josefsson Request for Comments: 4648 SJD Obsoletes: 3548 October 2006 Category: Standards Track The Base16, Base32, and Base64 Data Encodings Status of This Memo This document specifies an Internet standards track protocol for the Internet community, and requests discussion and suggestions for improvements. Please refer to the current edition of the “Internet Official Protocol Standards” (STD 1) for the standardization state and status of this protocol. Distribution of this memo is unlimited. Copyright Notice Copyright © The Internet Society (2006). All Rights Reserved. Abstract This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet characters in encoded data, use of different encoding alphabets, and canonical encodings. RFC 4648 Base-N Encodings October 2006 Table of Contents 1 Introduction...............................................................................................................................................................3 2 Conventions Used in This Document..................................................................................................................... 4 3 Implementation Discrepancies................................................................................................................................ 5 3.1 Line Feeds in Encoded Data.................................................................................................................................5
    [Show full text]
  • IDOL RSS Connector (CFS)
    HPE RSS Connector Software Version: 10.11.0 RSS Connector (CFS) Release Notes Document Release Date: November 2015 Software Release Date: November 2015 RSS Connector (CFS) Release Notes Legal Notices Warranty The only warranties for Hewlett Packard Enterprise Development LP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HPE shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice. Restricted Rights Legend Confidential computer software. Valid license from HPE required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license. Copyright Notice © Copyright 2015 Hewlett Packard Enterprise Development LP Trademark Notices Adobe™ is a trademark of Adobe Systems Incorporated. Microsoft® and Windows® are U.S. registered trademarks of Microsoft Corporation. UNIX® is a registered trademark of The Open Group. This product includes an interface of the 'zlib' general purpose compression library, which is Copyright © 1995-2002 Jean-loup Gailly and Mark Adler. Documentation Updates HPE Big Data Support provides prompt and accurate support to help you quickly and effectively resolve any issue you may encounter while using HPE Big Data products. Support services include access to the Customer Support Site (CSS) for online answers, expertise-based service by HPE Big Data support engineers, and software maintenance to ensure you have the most up-to-date technology.
    [Show full text]
  • Confidentiality Technique to Enhance Security of Data in Public Cloud Storage Using Data Obfuscation
    ISSN (Print) : 0974-6846 Indian Journal of Science and Technology, Vol 8(24), DOI: 10.17485/ijst/2015/v8i24/80032, September 2015 ISSN (Online) : 0974-5645 Confidentiality Technique to Enhance Security of Data in Public Cloud Storage using Data Obfuscation S. Monikandan1* and L. Arockiam2 1Department of MCA, Christhu Raj College, Panjappur, Tiruchirappalli – 620012, Tamil Nadu, India; [email protected] 2Departmentof Computer Science, St. Joseph’s College (Autonomous), Tiruchirappalli – 620102, Tamil Nadu, India; [email protected] Abstract Security of data stored in the cloud is most important challenge in public cloud environment. Users are outsourced their data to cloud for efficient, reliable and flexible storage. Due the security issues, data are disclosed by Cloud Service Providers (CSP) and others users of cloud. To protect the data from unauthorized disclosure, this paper proposes a confidentiality technique as a Security Service Algorithm (SSA), named MONcryptto secure the data in cloud storage. This proposed confidentiality technique is based on data obfuscation technique. The MONcrypt SSA is availed from Security as a Service (SEaaS). Users could use this security service from SEaaS to secure their data at any time. Simulations were conducted in cloud environment (Amazon EC2) for analysis the security of proposed MONcrypt SSA. A security analysis tool is used for measure the security of proposed and existing obfuscation techniques. MONcrypt compares with existing obfuscation techniques like Base32, Base64 and Hexadecimal Encoding. The proposed technique provides better performance and good security when compared with existing obfuscation techniques. Unlike the existing technique, MONcrypt reduces the sizeKeywords: of data being uploaded to the cloud storage.
    [Show full text]
  • Chapter 4: Inter-Process Communications
    95-702 Distributed Systems Chapter 4: Inter-process Communications 95-702 Distributed Systems Information System Management 1 Objectives • Understand the purpose of middleware. • Understand how external data representations contribute to interoperability. • Understand how external data representations contribute to speed. • Understand marshalling/unmarshalling • Understand CORBA’s CDR • Understand Java’s serialization • Understand XML and JSON • Understand how remote object references may be represented. • A UDP based request response protocol • Failure models • Discussion questions 95-702 Distributed Systems Information System Management 2 Middleware layers Applications, services RMI and RPC request-reply protocol Middleware This layers chapter marshalling and external data representation UDP and TCP Middleware provides a higher level programming abstraction for the development of distributed systems. (Coulouris text). 95-702 Distributed Systems Information System Management 3 Moving values around on a network Passing values over a network may be problematic. Why? If both sides are the same (homogenous), no problem. But if the two sides differ in the way they represent data then we are faced with interoperability problems: 1. Big-endian, little-endian byte ordering may differ 2. Floating point representation may differ 3. Character encodings (ASCII, UTF-8, Unicode, EBCDIC) may differ as well. So, we must either: Have both sides agree on an external representation or transmit in the sender’s format along with an indication of the format
    [Show full text]
  • XEP-0116: Encrypted Session Negotiation
    XEP-0116: Encrypted Session Negotiation Ian Paterson Peter Saint-Andre mailto:ian:paterson@clientside:co:uk mailto:xsf@stpeter:im xmpp:ian@zoofy:com xmpp:peter@jabber:org http://stpeter:im/ Dave Smith mailto:dizzyd@jabber:org xmpp:dizzyd@jabber:org 2007-05-30 Version 0.16 Status Type Short Name Deferred Standards Track TO BE ASSIGNED This document specifies an XMPP protocol extension for negotiating an end-to-end encrypted session. Legal Copyright This XMPP Extension Protocol is copyright © 1999 – 2020 by the XMPP Standards Foundation (XSF). Permissions Permission is hereby granted, free of charge, to any person obtaining a copy of this specification (the ”Specification”), to make use of the Specification without restriction, including without limitation the rights to implement the Specification in a software program, deploy the Specification in a network service, and copy, modify, merge, publish, translate, distribute, sublicense, or sell copies of the Specifi- cation, and to permit persons to whom the Specification is furnished to do so, subject to the condition that the foregoing copyright notice and this permission notice shall be included in all copies or sub- stantial portions of the Specification. Unless separate permission is granted, modified works that are redistributed shall not contain misleading information regarding the authors, title, number, or pub- lisher of the Specification, and shall not claim endorsement of the modified works by the authors, any organization or project to which the authors belong, or the XMPP Standards Foundation. Warranty ## NOTE WELL: This Specification is provided on an ”AS IS” BASIS, WITHOUT WARRANTIES OR CONDI- TIONS OF ANY KIND, express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE.
    [Show full text]
  • User Guide for Polycom RSS 4000 System, Version
    Polycom® RSS 4000™ System User Guide Polycom Moscow [email protected] T +7-495-924-25-25 www.polycom-moscow.ru 8.0 | 2012 July | 3725-82809-001/A Trademark Information Polycom®, the Polycom “Triangles” logo, and the names and marks associated with Polycom’s products are trademarks and/or service marks of Polycom, Inc., and are registered and/or common-law marks in the United States and various other countries. All other trademarks are the property of their respective owners. Patent Information The accompanying product is protected by one or more U.S. and foreign patents and/or pending patent applications held by Polycom, Inc. © 2012 Polycom, Inc. All rights reserved. Polycom, Inc. 6001 America Center Drive San Jose CA 95002 USA No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Polycom, Inc. Under the law, reproducing includes translating into another language or format. As between the parties, Polycom, Inc., retains title to and ownership of all proprietary rights with respect to the software contained within its products. The software is protected by United States copyright laws and international treaty provision. Therefore, you must treat the software like any other copyrighted material (e.g., a book or sound recording). Every effort has been made to ensure that the information in this manual is accurate. Polycom, Inc., is not responsible for printing or clerical errors. Information in this document is subject to change without notice. ii Contents Contents 1 Getting Started .
    [Show full text]
  • A Proposal of Substitute for Base85/64 – Base91
    A Proposal of Substitute for Base85/64 – Base91 Dake He School of Information Science & Technology, Southwest Jiaotong University, Chengdu 610031,China College of Informatics, South China Agricultural University, Guangzhou 510642, China [email protected] Yu Sun, Zhen Jia, Xiuying Yu, Wei Guo, Wei He, Chao Qi School of Information Science & Technology, Southwest Jiaotong University, Chengdu 610031,China Xianhui Lu Key Lab. of Information Security, Chinese Academy of Sciences, Beijing 100039,China ABSTRACT not control character or “-”(hyphen). There are totally 94 of such ASCII characters, their corresponding digital The coding transformation method, called Base91, is coding being all integers ranging from 32 through 126 characterized by its output of 91 printable ASCII with the exception of 45. E-mail written in these ASCII characters. Base91 has a higher encoding efficiency than characters is compatible with the Internet standard SMTP, Base85/64, and higher encoding rate than Base85. and can be transferred in nearly all the E-mail systems. Besides, Base91 provides compatibility with any Nowadays, as Content-Transfer-Encoding to provide bit-length input sequence without additional filling compatibility with the E-mail, Base64[1,2] code is usually declaration except for his codeword self. One can use employed. Base91 as a substitute for Base85 and Base64 to get some Base64 coding divides the input sequence into blocks benefits in restricted situations. being 6-bits long to be used as variable implementation Keywords: Base91; Base85; Base64; printable ASCII mapping, the mapping is denoted by characters; IPv6 Base64[ ]: X →Y where the variable or original image set X includes all 64 1.
    [Show full text]
  • SOAP API Developer's Guide
    PureConnect® 2019 R4 Generated: 11-November-2019 SOAP API Content last updated: 06-November-2019 See Change Log for summary of Developer's Guide changes. Abstract This document contains Application Programming Interface (API) reference information for the Simple Object Access Protocol (SOAP) with PureConnect. For the latest version of this document, see the PureConnect Documentation Library at: http://help.genesys.com/cic. For copyright and trademark information, see https://help.genesys.com/cic/desktop/copyright_and_trademark_information.htm. 1 Table of Contents Table of Contents 2 CIC and SOAP API Developer's Guide overview 5 Audience 5 Organization of Material 5 Related Documentation 5 Recommended Web Links 5 Introduction to SOAP in the CIC Environment 7 What is SOAP? 7 Who uses CIC's SOAP functionality? 8 SOAP's Request/Response Model 9 Web Services 9 Requests and Responses are XML Documents 9 What is XML? 10 What is the relationship between XML and markup languages, such as HTML or SGML? 10 XML Parsers 11 Viewing XML in Internet Explorer or Edge 11 Comparing XML to HTML 12 Other features of XML 12 Structure of an XML file 12 Listing 1: Sample XML File 12 XML Declaration 12 Rules that govern tags 13 The Root Element 13 Child Elements 13 Structure of SOAP Messages 13 Envelope Section 15 Header Section 15 Body Section 16 Request Messages 16 Response Messages 16 Fault Messages 17 CIC's SOAP Components 17 SOAP Tools in Interaction Designer 17 The SOAP Tracer Utility 20 SOAP ISAPI Listener Task for IIS 25 SOAP Notifier COM Objects 25 Install
    [Show full text]
  • Download Pdf Encoded Base64 Download Pdf Encoded Base64
    download pdf encoded base64 Download pdf encoded base64. Completing the CAPTCHA proves you are a human and gives you temporary access to the web property. What can I do to prevent this in the future? If you are on a personal connection, like at home, you can run an anti-virus scan on your device to make sure it is not infected with malware. If you are at an office or shared network, you can ask the network administrator to run a scan across the network looking for misconfigured or infected devices. Another way to prevent getting this page in the future is to use Privacy Pass. You may need to download version 2.0 now from the Chrome Web Store. Cloudflare Ray ID: 67d29af1285415e8 • Your IP : 188.246.226.140 • Performance & security by Cloudflare. Downloading a base 64 PDF from an api request in Javascript. Possibly the longest and most specific title in a tech related Medium post I’ve written to date. I had this exact issue a while ago and couldn’t seem to find any good posts or articles covering it so I thought I’d create my own for future front end devs that might have the same problem. The problem. Saving a pdf as base 64 in the backend makes sense, but to the user it’s just a random combination of numbers and letters. Luckily html natively supports parsing base64 pdfs to normal ones and downloading them like so. Which works really well in modern browsers. However, in the scenario where there’s no base64 pdf code when the user first lands on the site and they need to click a button to fetch the code from a database, how would you get this code above.
    [Show full text]
  • Encoding JSON by Using Base64
    Received: 3 January 2021 Revised: 20 February 2021 Accepted: 29 February 2021 DOI: 10.37917/ijeee.17.1.4 Vol. 17| Issue 1| June 2021 Open Access Iraqi Journal for Electrical and Electronic Engineering Original Article Encoding JSON by using Base64 Mohammed Thakir Shaamood College of Arts, Al-Iraqia University, Iraq Correspondence *Mohammed Thakir Shaamood College of Arts, Al-Iraqia University, Iraq Email: [email protected] Abstract Transmitting binary data across a network should generally avoid transmitting raw binary data over the medium for several reasons, one would be that the medium may be a textual one and may not accept or correctly handle raw bitstream, another would be that some protocols may misinterpret the meaning of the bits and causes a problem or even loss of the data. To make the data more readable and would avoid misinterpretation by different systems and environments, this paper introduces encoding two of the most broadly used data interchange formats, XML and JSON, into the Base64 which is an encoding scheme that converts binary data to an ASCII string format by using a radix-64 representation. This process, will, make the data more readable and would avoid misinterpretation by different systems and environments. The results reflect that encoding data in Base64 before the transmission will present many advantages including readability and integrity, it will also enable us to transmit binary data over textual mediums, 7 Bit protocols such as SMTP, and different network hardware without risking misinterpretation. KEYWORDS: JSON, Base64, Encoding, Binary, XML. I. INTRODUCTION least possible time while consuming as little processing overhead as possible, while maintaining the security and The technical foundation of the Web is constantly integrity of the data.
    [Show full text]
  • Non-Blocking Signature of Very Large SOAP Messages Arxiv:0709.2635
    Non-Blocking Signature of very large SOAP Messages G.A. Kohring and L. Lo Iacono IT Research Division, NEC Laboratories Europe Rathausallee 10, D-53757 Sankt Augustin, Germany [email protected] September 17, 2007 Abstract Data transfer and staging services are common components in Grid-based, or more generally, in service-oriented applications. Secu- rity mechanisms play a central role in such services, especially when they are deployed in sensitive application fields like e-health. The adoption of WS-Security and related standards to SOAP-based trans- fer services is, however, problematic as a straightforward adoption of SOAP with MTOM introduces considerable inefficiencies in the signa- ture generation process when large data sets are involved. This paper proposes a non-blocking, signature generation approach enabling a stream-like processing with considerable performance enhancements. Keywords: SOAP, WS-Security, MTOM, Digital Signature arXiv:0709.2635v1 [cs.DC] 17 Sep 2007 1 Introduction Many Grid-based applications require data transfer and staging services in order to deliver input data to and output data from compute services. De- pending on the concrete application field, security policies play a vital role in such services and are often a critical distinguishing factor. In medical treatment or research scenarios, in which medical images are transferred to simulation services, the confidentiality, integrity and authen- ticity of the image data as well as the returned simulation results have to be 1 ensured [1]. An according end-to-end communication security component is a necessary building block for a secure transfer service for such environments. Web Services DIME SwA MTOM Transfer XOP Packaging MIME Binary Base64 Encoding Figure 1: SOAP Data Transfer Protocol Stack Due to the fact that Grids are more and more converging to Web service technologies and accompanying standards, the application of WS-Security and related specifications seems to be an obvious solution to provide such security mechanisms for data transfer services.
    [Show full text]