Researchers last week described a cipher-block chaining (CBC) attack via the XML Encryption standard that could compromise secure online transactions.

A weakness in XML Encryption can be exploited to decrypt sensitive information, researchers say.

A flaw in XML Encryption leaves major Web services vulnerable to potential attack unless Apache, Red Hat, IBM, Microsoft and other major XML framework providers adopt a new standard.

German scientists say weakness in cipher block chaining mode for XML encryption means secured communications between Web services can now be decrypted, and call for change in encryption standard.

XML Encryption is used widely as part of server-to-server Web services connections to transmit secure information mixed with non-sensitive data, based on cipher-block chaining.

An XML-based protocol that is destined to become the building block for corporate user-access security products was approved last week by the Organization for the Advancement of Structured ...