XML Key Information System for Secure e-Trading Nam-Je Park, Ki-Young Moon, Sung-Won Sohn Informatoion Security Research Division Electronics Telecommunications Research Institute(ETRI) 161 Gajeong-dong, Yuseong-gu, Daejeon, 305-350 KOREA Abstract: - XKMS(XML Key Management Specification), one of XML Security specification, defines the protocol for distributing and registering public keys for verifying digital signatures and enciphering e-documents of electronic trading applications with various and complicate functions. In this paper, we propose XKIS(XML Key Information Service) Model and implement E-XKISS(ETRI XKIS System) Component based on standard specification. Also describes the analysis and security of XKIS for Secure e-Trading, paying attention to the features of XML based security service. This model supported includes public key location by given identifier information, the binding of such keys to identifier information. The client service component controls the numbers of locate threads and validate threads to analyze the minimum requirements of real-time key retrievals. This reference model offers the security construction guideline for future domestic e-Business Frameworks. Key-Words: XKMS. XKISS, XML Security, XML. Key Management, Electronic Trading, PKI 1 Introduction The XML(eXtensible Markup Language) is a promising standard for describing semi-structured information and contents on the Internet. Some of the well -recognized benefits of using XML as data container are its simplicity, richness of the data structure, and excellent handling of international characters. The practical use of XML is increasing in proportion to spread speed of e-Trading(Electronic Trading) as global standard for Internet and e-Trading. In this environment, a security mechanism for XML documents must be provided in the first place for secure e-Trading. The security mechanism also has to support security function for the existing non-XML documents, too. The XML Security standards define XML vocabularies and processing rules in order to meet security requirements. These standards use legacy cryptographic and security technologies, as well as emerging XML technologies, to provide a flexible, extensible and practical solution toward meeting security requirements. The Industry is therefore eager for XML and PKI (Public Key Infrastructure) to work together in fulfilling the widely held expectations for cryptographically secure, XML-coupled business applications. The best -known simplicity of XML is to provide portability of data between disparate business systems contrasts with the complexity of traditional PKI implementation. Therefore, a key architectural goal in the XML Key Management Specification (XKMS) is to shield XML application developers from the complexity of traditional PKI implementation. It permits delegation of trust processing decisions to one or more specialized trust processors. It enables XML-based systems to rely on complex trust relationships without the need for complex or specialized end-entity PKI application logic on the client platforms where XML processing is taking place. The world recently, by way to offer certification about important transaction of this XML environment, is researching about XML key management to integration of PKI and public key certificate and XML application. E-XKISS(ETRI XKIS System) which will be introduced in this paper, is a subsystem of XKMS that has been implemented to support the processing, by a relying party, of Key Information associated with a XML digital signature, XML encrypted data, or other public key usage in an XML web application. In this paper, we propose a design for XKIS(XML Key Information Service) Model and we explain our implementation, E-XKISS service component based on standard specification. First we investigate related work on XKMS and then we explain overview of the service system structure. Then we propose a design for XKIS Service Model and explain implemented E-KISS service component. Finally, we explain function of service component and then we conclude this paper.