Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Security Company Leverages SSL to Protect Web Application Mashups



 By: Brian Prince
2009-03-16
Article Rating:starstarstarstarstar / 2


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
SafeMashups is leveraging SSL to enable applications to authenticate one another through the Web browser securely prior to mashing up. SafeMashups is currently under incubation at the University of Texas at San Antonio's Institute for Cyber Security.

A startup is pushing a protocol based on Secure Sockets Layer encryption that enables Web applications to securely authenticate each other before mashing up.

The company, SafeMashups, is taking on a problem others have tried to solve using proprietary cryptography.  Rather than take that approach, SafeMashups is using its MashSSL protocolbased on the time-tested cryptography of SSLto enable applications to mutually authenticate via secure communication through the browser.

The companys MashSSL standard has been designed to be implemented in RESTful fashion to optimize Web application interactions. With that as a foundation, the company is offering the MashSSL Web Toolkit, which enables developers to integrate MashSSL into any application, as well as the free SafeMashups Community service, which allows organizations to maintain lists of partners and applications they are willing to mash with.

Resource Library:

As a cryptographer, I can tell you that the only good crypto is really old crypto, said Ravi Ganesan, CEO of SafeMashups. Unfortunately its not a science; its an art. And the only way we know to trust protocol is [if] a lot of smart people have looked at it for five, 10 years and not been able to break it.

Web applications mashing through a browser use the MashSSL Web Toolkit in conjunction with their existing SSL certificates. The process is invisible to the user, and there are no client downloads or any changes required to the browser. Enterprises that want to integrate the MashSSL Web Toolkit into their Web applications can obtain it under a perpetual royalty-free license, according to the company.

Our target audience is the technology suppliers, people who supply [related] technology to enterprises, and the certificate authorities, because at the end of the day this is going to vastly increase the number of SSL certificates because people are going to find a lot more uses for it, Ganesan said.

Right now, SafeMashups is part of The University of Texas at San Antonios Institute for Cyber Securitys Incubator program.  The company remains under incubation at the Institute for Cyber Security at UTSA and is considering spinning out with external funding for accelerated growth by the end of the year.

 






  Reader Comments: Security Company Leverages SSL to Protect Web Application Mashups
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}r㶲s\@♵MR-heyY;:U*$ER$g~u~|$Ғ/㩱%lݍFλ$9ش%sg<[D;;}.GP|gY* dxc5 JԲ|W7RnSQ0Pa8Q;Y|7-G|ݖ|Xul̀ âfq/#!_TBp`FJ~O,Ӈ;)xpce[]2߀#ݸzgE-2'l,Rۄ@ظuFazHcj8Ef4 ؗYűͰLh@6CMTjR?L{i/Mh8oF3jw~pd vAJy]J> Es|Nw>;{'׼ ;A:W@o&1`ZLTQRpd" PcfCGY_:G]>o VqW-hZIAvIna>E4a™EU}dNhp"?[e&Nl,aV4*2V]鬙&ȏAs~һ%9i_u}d#t>1|aAZ|YkU[_l 6O{uH|?-|kh`m8;R^ٗ ?/d[:Ǥ uXO'0do-YnH!)M|T|Y|ěq0.n>@|sLmɜSHu t~cM'}6kiF1 9B:%y(7hr Q@e)#8?3݃IhJq䰉3~`Mab&DJH7є6)`I˫ TE%嗋mSq>]Q${3BDȭ`g@A.r)i" 6=aL+^\~_\GכUsNVt]0E?´;{ 0hvz?s\#ݶOCGs>H2胎6ml-3ЍIXn`΀ha;Nh1[׏ <]X KpŘ00wmLP#AтMx>tw &>ld$4o)ssLnM9/5I#ˋ&0P= 2/?뇾axs§P}MrAݛs9[ݴiǀxt0(.%w2Z}c%>] RRR@t"AђF *4 g #X"C"'GA7w$]VI+RaD8T*nOu$9SgV*2ڹLX)QY,p[/ ͙JRd0u Q򍜈="`&Qea*0pRx5Q7m7ePutHބdb&,aCtH{01i &𝀜`3Ґ( s?;\ύCCEw[Jz0aEiŬ`߃9 i`T 4fs)wdm˴o)RЛvs9n(!+hWY 2gdRUyrt(M7)\EYbꞦ5XScX`Dno>p)^HIRЙj!@9zէl)s-Yk͒T^ӛA']֥P+=@x# l+ƙA-ژ WZ" IPצ(XKkezdxч($mU6L6:6pȞ}nP jrIj3#SVhV^Ϛa+ L 4 c TlVCaxZzǎ As,r%}=r=68 1h>JeHǝ9~L C5,&fj:Y[|'+gб殩ˋ°^]48~5'|2^ۄCd=1͉V*a0؋TM!=ݝlZA_a VƤH~1:2.eX \kʙ8Of3n?0R+kڋHx HS"©9z!| jjx0A$ǛŹ¨0uIغ77%wpH} [̝M3$!O_'%E&x.5 d1$o+:#DE~H>pӞrFVyUBH=~kR^=N aYj8Y+0y/o'L]jCg2ޗg8CzPCsh,~Vқ`>sn,|rqZE[O`c)0v *JB2ByQѮrR2 cӣFpxgu;ufv9Aخ crA=1}cv1PV}89'& R9&GJ lɂu!MUm,n`{]0>AG5h0qHG&;3E6YZ o:+@sjZS~I h5 ӥ ,Gφ&2>̍k}]P~֢sbo^ چH1t0Ȉ%=Gl0۩tw\܁c:P?H(Tʈ[C01^*== 7S_ -MU;4 Ϣ-bIۛp[= |l9q37=_g`%tY3|[P rfȵ#w0m97c~106Y-0P>O\մJߗ,1c1s*? .AqHl ~/n'WaO8n7=RJ 2=ctY8itgc6Z*Cz)TʂYeo(QU-q'F.҂^%ixN1 Qc>?/$*RQv+Ձ5΀LdV֪EzP{,)uzh &RrIuE;1ŏ[o(ureP#I(OU?2:n1RʵRM( CEDNJ9 ^,ش/Askpo= 2j>uR/̖M%4e3/쌸-9DXadJH5 ]Uj; 19!`0\߫=bxHp?l^*~ d9#T`| @`'d1s<œo =$} '`ǷWXdK!O%EDOCVigX&J*ό&d{ŧݽ]VWv&/(0h_pm;dU]uv'@Ώ.c)ilw>N[<3su_Aw~@DyɇvA`}W4.J/rH`e޷p-:%5ށ6 `i4~{H(}Ǵ{5ۋIta؆ڧ0Z@IDWzA+t[;Kǽ%?wH:m)ޠw!z0N:??`IN:axݺ O8>m48f ` xѤĢ<"cxH/ ^!-!B*.˓%g ^|%֓}Xq!slP5L4Z3kΚ'0 V`!bB!bN<؇APC{ z H)'4'Yst$;3ĞZIh!:Ua2"(BShl'uSxv>]8S%j7 E'W%'k; u{-&:}mF џW`m %cAdakF+9eI'+;#$ubSPӇڜr0y!D(Í7"HtS%p1#N M5W"v=O?G0 cb9wa(1|$-zbeanIlx0g%RN锐']'C8 z>RB'ԴIդ28I5F4A2 uIH? Md4XPWdht(lA jÚmf /.to6Dr0&@v\e0Ӑ`q0‰@P V- QגZ4ҫo%˫؉C>lj9l01z>¼*CQ/;GNĶ{s #(=qc$vd:Gw*b,_}hrrӅ[eЦwyv$smCc1#&Gm_ |3$?[Э> y{hNo&<)sǣAl֜u׽\41n7ywڻo e'  CwݿwA]iNwl'UFᚎxZ J}~l't>D(jEWc{w#WȪ̅SR؉~g#S^q:-< ctH_`@L6COځ{W-3(,l#{F 82{KN7+x=*~O +Lw5GGoqww6{eQJ=,q-@jjeIj\,~^[DXHڽ]!D:*pS޸<{cNy‡i襶N<=to :?̰@ OVxf7g\#9SP`' ܍)³$`GDAR5}ig6A j(l N XW+OiƿBWc#ZT>9bv<~Q˻b۲,rcǾtGaR{㙾Tվw-SwĜJ%9LCm 0{ץ^`!^>͗|v8^QS;$0/,o>o>o>/cc}9%%_AK,`0ؘ&k|K3/<6@ s(mku*.{JqxJ/ݻ r'"]|JB㡵fxCW, 1 8YBO$A,؄2A$L A<@pP,$|^ŝ.]=,` KWR^Ϝ;_DI`3ҙ9_0cjSӣwe-~@]' <no[^X?xl^#5g񍌡Pl>Vc}uъZ$x49ZґBU"   D#Kuq~kg,L|"5cCzȒ;&m %o/ʆc)/fSC7DY,wI'ڝx U7H){A%Q F6\E瀋oCLz) GKO"f V`_kf|ixۿ=vWmOѠܓt9w>qzdf#h(›DIMtoLCdŰXweE|Ar2K]-bJǯxwe[rЙ0r4+J}ip/K"GcM08v/ڒRv,^Y24N:] *Y#&%]%.w{!x6s_8tBosmlҗI/u5Ё=W?%4CIj|u"#{VJD:`WF3VD92J5th` >ˋ) z:.W3hέc(P5?}j闶Q$đG}r]˼ Xdl;hOŦ>-.>b1D+b@/j 3ߐ]̯>O0&sߋ,jT608;~{ʞVS,KY+ ZH':t=jhD֤Jd iZTϡVR0~w(/x0u/ԑպԴzYܣF +ڴxnTAKa9aWK.kXGl;1#W*ZT0o@ZcdiT EL> Ȥ.LtxZڊRLkO>;eDzisp[ Al9 c=ZF]Oj$`*lԮ< &hF~ +^Qc"2 Ra.|юMUbtMЭTR^.@yj4ZoMϱ{ cD:[ t4@,#-^a9U%d[h4K$¨ӔFJ`x]M} t K1j?_J }#ײ4D~t#nO5@U%}Tbt`ֿ&|ɈsZM&A׈1hi)<[W'nyVmIr .kh>aX7݋ORkueab+Y!kb^u<ҡ:+qܖNm- }~O}^ NM .MGoJ^j$Ǘp ? PmʼD'RSxcr+ǯ\Ix#k3du sF@Yj$OGP56:m9o_ڃAV<gD&#xϋn溸 3~L@Nxl0W9^^A5y\v3vbաu/ň Oc ,Py-r9Gc%1돗}e_a`!;9'ph\`sj@KJL*2&Bs85{_/}&>I%&6@@P0H7+xΜ6"))dlbXLy 6Ӗ{q.8A#z{׹`bWoP$P`+wdc&b|9 h/ $N0XJπ.JUEt037  cn Q&@Ĕv7UI8F-,a1 u|`!>E<ezwY<>w we~rt>c< 27ikR.ɖàFMQpV#ߛ鞿SgY˄RHlݜ(8z1I(tCK/HzsRfvdazFf|?ݙi2{xCbRWkJ%|u3ʰLXU+ʗͪg2Vqƥ&JZ!J`xFA dhz߃[)ɦ}a3brtfZgieMǗAwNgk]|>휷/.;B`&hT晾L]$,C rz궙8sޢksYx9%Y:wf8lItgPJTٌ/!jbTթab_)o\}-Zq 3YW'>;tɱ3:|jQ#ZuRBjs@1@C|ow.4Cx_m;9B9P~]~NmS>.?sʏ8sC9 ?e:坓BsS3r'~Ng(]~rlO<@n}@n}7.g7?D= ʯr?@@?rʻP)=s9;^~ /r޿>s ro ] S]AU^9w*~P~W{ÿuN9$)gV.pv*esS^)4rR}~ )P9PϪ ~2"R@~W~ kw\WKM0TntEK\7L1nv}WG{1:,y&  hxVydr bye?VRw;]CҤ]z.{%])W[O'ikr(%s<2g)h{US3-FD Xô=QǒGd .Ǒp[{剹?|K2xY0>ۓ{ݯ\pm{ry{ %> | #rӚܴOⷌv<2+յ |3/߆zH'<+;s>zPxZLԸʲGpoQ^" #"5 Mg$ Rp#ZִZjVU W{(&0#&$`rXW5rF(RB4|OӴW)]7V yVi8an%[C#Dk(xx=n*Yۼx`XT;ގe@7 J,5w;SЋňD@.^G, ؜|L:AÆ^VL;c`\;o=s2gYC?x*8A\vud$}9= zl{jP%n2!%؉GGiB p+DN焽HaCm5:eԢ̱"r:X kڄ!چY~l+*OpaHzB'Xxev7FY{N6 )4M뚈βP$.˺+0\d~̲`nۭRs}x/ē_| Њ3Obx`#YұߞS TDO2Ntx9=|En[~QؗE@1agG;Qf*iů';@Bc%Cb9G8]! ""_Sr0oYҽkl`B`t[L:9Am'{ۆ*lٹ93J1p,qmefӧWKe[ F'p 0 n=ձ]w O`7@#>Ƌrd{Ko^x1$+nvGD g7>6'ك|2~>Q$L{x Ba{~ r@c˴"]&\n\jџ捹J.ѮRTvbbqɜ3M>tq2#Q*ԮջSs̜GԋO0xeҵh_ɬnqY?[ m-1k$~El=bu{-W^͔+ ]'[ۧ3й?-7/e[m"C,{QFbV]/s:h݆G0ޏq[7PV|@xS?0D\bXeܜ1a#]Qa[:3DmEtAx~w{c\7gme!+v$п@>{~w1':1F`w^?'8KIZ epCikZ+ 0D1+If`aQd+8*)ؐW kO`4bOP1,F,oԛÌ'TS*4.>ϭn<\8ig~C{%zx!&̱`=br8Lte4Qs|J9Km)轋ȝgz^4}*]x 0ոF"%hw2b5ʧ=M~Wȅ{E=Vt*Ng핋v Pi9|C*ƺU}o;ˌhT*.㉋۝k{g,,ݸG/{O@ђuz'4!ջht'+e=;`on gs7*OРtqCժZ-Nbj|ۊX#iQgc\岞+ziKmwN~늘p6JL? ۔#Us̥D/5^JB\sjh6