In Chapter 4, “Safeguarding the Identity and Integrity of XML Messages,” we discussed XML Signature and its importance as a foundational XML security standard. In this chapter, we describe XML Encryption, which is designed to keep all or part of a SOAP message secret. Because XML Encryption followed XML Signature as a standard, the two are similar and share some of the same concepts, terminology, and XML elements. However, XML Encryption addresses different issues than XML Signature and, consequently, shows up in quite a different manner than XML Signature. We first discuss at a high level the relationship between XML Signature and XML Encryption ...