How to Break XML Encryption - Automatically

Dennis Kupser, Christian Mainka, Jörg Schwenk, Juraj Somorovsky
2015 Workshop on Offensive Technologies  
In the recent years, XML Encryption became a target of several new attacks [18, 17, 16] . These attacks belong to the family of adaptive chosen-ciphertext attacks, and allow an adversary to decrypt symmetric and asymmetric XML ciphertexts, without knowing the secret keys. In order to protect XML Encryption implementations, the World Wide Web Consortium (W3C) published an updated version of the standard.
dblp:conf/woot/KupserMSS15 fatcat:7vsgk7ri2zfvtgasm2vwjsvcsq