« assorted business | Main | CalDAV BOF at OSCon »
July 15, 2005
securing RSS content
XML.com had an interesting article a couple days ago about securing RSS content. The gist of it is that you can encrypt some content, stick it into an RSS item's description, and then use a Greasemonkey script to decrypt it when viewing the feed. Seems easy enough. I guess if i had syndicated content that I wanted to secure, this would be a nice and simple approach. Of course, now that Atom 1.0 is about to be released, Bloglines will add XML Encryption support and the issue will go away. Anyway, it's the first interesting use of Greasemonkey i've seen.
Posted by bcm at July 15, 2005 11:04 AM
Comments
" Bloglines will add XML Encryption support and the issue will go away. "
Actually, no, it won't. IF Bloglines adds XML Encryption support then you would have to hand them your decryption key instead of your password. They would decrypt the feed on their side before sending it to you, with all the associated downsides I listed in the XML.com article.
Posted by: Joe Gregorio ![[TypeKey Profile Page]](http://bcm.maz.org/nav-commenters.gif)
at July 15, 2005 12:15 PM
Heh. You caught me making assumptions about the XML Encryption stuff without actually reading it. But what you say makes sense. I wonder if IE will ever include any sort of Greasemonkey-like scripting tool. I dislike Firefox-only thingers as much as IE-only ones.
Although, like I said in the original post, I'm having a hard time thinking of something in the real world that I'd want to both syndicate and encrypt.
Posted by: bcm at July 15, 2005 12:38 PM
Post a comment
Thanks for signing in, . Now you can comment. (sign out)
(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)