1Introduction |
|
Project |
CYBERVOTE |
Contract |
IST-1999-20338 |
Client |
European Commission | ||
Reference |
CYBERVOTE:WP2:D6/V2:2000 | ||
Issue (draft) |
1.0 |
Date |
8 November 2001 |
Status |
Definitive |
Nature |
Public |
Author(s) |
Cedric CARON |
Organisation |
MATRA Systèmes & Information |
Sylvie BRUNESSAUX |
MATRA Systèmes & Information | ||
Janne VÄRE |
NOKIA Research Centre | ||
Antoon BOSSELAERS |
K.U.Leuven Research & Development | ||
Name |
Role |
Organisation | |
Checked by |
Janne VÄRE |
Deliverable leader |
NOKIA Research Centre |
Approved by |
Sylvie BRUNESSAUX |
WP2 Manager |
MATRA Systèmes & Information |
Authorised by |
Stéphan BRUNESSAUX |
Project Director |
MATRA Systèmes & Information |
Distribution list | |
Name |
Organisation |
Antonis GALETSAS |
European Commission |
Stéphan BRUNESSAUX |
MATRA Systèmes & Information |
David PARKINSON |
British Telecommunications |
Antoon BOSSELAERS |
K.U.Leuven Research & Development |
Sébastien LEVY |
Mairie d'Issy-les-Moulineaux |
Karl SCHLICHTING |
Freie Hansestadt Bremen |
N. ASOKAN |
NOKIA Research Centre |
Berry SCHOENMAKERS |
Technische Universiteit Eindhoven |
Leif RYDÉN |
Kista Stadsdelsnämnd |
Synopsis
This document is the second volume of the Deliverable 6 which is the report on the review and selection of authentication and security techniques, applicable Internet technologies, hardware platforms, mobile phones and Internet terminals.
The purpose of this volume is to review and select Internet technologies that could be applicable to CyberVote.
File name
MSI-WP2-D6V2-v1.0.doc
Amendment History
Version |
Date |
Description |
0.1 |
23 January 2001 |
First outline. |
0.2 |
13 March 2001 |
Integration of NOKIA's contribution. |
0.3 |
31 May 2001 |
Integration of MS&I's contribution. |
0.4 |
6 July 2001 |
Completion of Introduction, conclusion, synopsis, sections 2 and 14. |
1.0 |
8 November 2001 |
Integration of KUL's contribution. Completion by MS&I of KUL's contribution. Execution summary. Final edition. |
Disclaimer
The information in this document is provided as is and no guarantee or warranty is given that the information is fit for any particular purpose. The user thereof uses the information at its sole risk and liability.
Scope of CyberVote
CyberVote, an innovative cyber voting system for internet terminals and mobile phones, is a research and development (RDT) programme being funded by the European Commission, with additional funding from the companies and organisations undertaking the work. It is part of the Information Society Technologies (IST) 1999 programme for research, technology development and demonstration under the fifth framework programme (5th PCRD). It is attached to Key Action 1 “Systems and Services for the Citizens”.
The objective of CyberVote is to demonstrate the first highly secure cyber-voting prototype using mobile and fixed internet technologies. The project will define and implement a CyberVote prototype embedding an innovative voting protocol relying upon the use of advanced cryptographic tools that will be developed to ensure integrity, privacy and authentication of the voters. The prototype will be demonstrated and evaluated on 3 trial applications.
The project is carried out by a consortium led by MATRA Systèmes & Information (FR) and grouping together: British Telecommunications (UK), NOKIA Research Centre (FI), K.U.Leuven Research & Development (BE), Technische Universiteit Eindhoven (NL), Freie Hansestadt Bremen (DE), Mairie d'Issy-les-Moulineaux (FR) and Kista Stadsdelsnämnd (SE).
The project officially started on 1 September 2000. It will end on 1 March 2003. The overall budget of the project is 3 243 629 Euro and the total effort is 27.4 man-years.
Executive summary
This report reviews a selection of candidate Internet technologies that could be applicable to the CyberVote project.
A set of technologies have been selected among the vast offer according to the standard architecture of a Web-based application, the CyberVote security requirements and the users requirements.
The following table summarises our conclusions at this stage of the project about the interest of a selection of technologies to CyberVote:
Technology |
Interesting |
Rather interesting |
Rather not interesting |
Not interesting |
Languages |
A |
|||
Data bases |
A |
|||
Web servers |
A |
|||
Application servers |
A | |||
LDAP |
A |
|||
Interface towards data servers |
A |
|||
WAP gateways |
A |
|||
B2Bi software |
A | |||
Portals |
A | |||
Middleware components |
A |
The interest of these technologies for the CyberVote project will be confirmed or not by Work Package 2.8 - Build mock-ups of architecture based on candidate solutions. The results of this Work Package will be deliverable D7 [4].
TABLE OF CONTENTS
1 Introduction 11
2 CyberVote Requirements for Internet technologies 12
3 Languages 17
3.1 Introduction 17
3.2 Candidates technologies 17
3.2.1 XML 17
3.2.2 XSL 18
3.2.3 XMLSignature 18
3.2.4 Encrypted XML 19
3.2.5 EML 19
3.2.6 HTML 20
3.2.7 WML 21
3.2.8 JSP 22
3.2.9 PHP 22
3.2.10 ASP 22
3.2.11 CGI 23
3.2.12 WMLScript 23
3.2.13 VBScript 24
3.2.14 JavaScript 24
3.2.15 Java 25
4 Data bases 26
5 Web Servers 28
5.1 Introduction 28
5.2 Candidates technologies 29
5.2.1 iPlanet Web Server, Enterprise Edition 6.0 29
5.2.2 Internet Information Server v5.0 31
5.2.3 Stronghold Secure Web Server 3.0 33
5.2.4 WebSTAR Server Suite 4.4 35
5.3 Alternatives 36
5.3.1 Apache Web Server 2.0 36
5.3.2 WebSite Pro 37
5.3.3 Zeus Web Application Server 3.3.5 37
6 Application Servers 38
6.1 Introduction 38
6.2 Candidates technologies 41
6.2.1 WebLogic Server 6.0 - BEA 41
6.2.2 WebSphere Application Server 3.5 Advanced Edition - IBM 44
6.2.3 IPlanet Application Server 6.0 – Sun-Netscape 47
6.2.4 Enterprise Application Server 3.6 - Sybase 49
6.3 Alternatives 52
6.3.1 ColdFusion Server 4.5 Enterprise Edition 52
6.3.2 Oracle9i Application Server 54
6.3.3 Windows 2000 Advanced Server 56
6.3.4 WebObjects 4.5 58
7 Lightweight Directory Access Protocol 59
7.1 Introduction 59
7.2 Candidates technologies 61
7.2.1 NDS eDirectory 8.5 - Novell 61
7.2.2 Oracle Internet Directory 63
7.2.3 IBM SecureWay Directory 3.2 65
7.2.4 iPlanet Directory Server 5.0 67
7.3 Alternative 69
7.3.1 Open LDAP 2.0 69
7.3.2 Microsoft Active Directory 70
8 Interface towards data servers 73
8.1 Introduction 73
8.2 Database independence.Candidates technologies 73
8.2.1 ODBC 73
8.2.2 JDBC 74
9 WAP Gateways 75
9.1 Introduction 75
9.2 Candidates 75
9.2.1 Kannel 75
9.2.2 Ophelia 77
9.2.3 xGate 79
9.3 Alternative 80
9.3.1 Nokia Artuse WAP Gateway 80
9.3.2 aveAccess 81
9.3.3 Jinny WAP Gateway 82
9.3.4 Others 83
10 Business to Business integration software 85
10.1 Introduction 85
10.2 Candidates 85
10.2.1 No B2B Product 85
10.2.2 BEA WebLogic Server 85
10.3 Alternative 86
10.3.1 webMethods B2Bi Solution 86
10.3.2 XDI System 88
10.3.3 Vitria Business Network 89
11 Portals 91
11.1 Introduction 91
11.2 Candidates 91
11.2.1 No Portal Software 91
11.2.2 Oracle Portal-To-Go 91
11.3 Alternative 93
11.3.1 Corporate Portal 93
11.3.2 E-Portal Suite 93
11.3.3 DataChannel Server 94
11.3.4 Brio.Portal 94
11.3.5 Others 95
12 Middleware components 96
12.1 Introduction 96
12.2 Candidates technologies 96
12.2.1 Enterprise JavaBeans 96
12.2.2 CORBA Object Request Broker and Java RMI 97
12.2.3 ActiveX-DCOM-MTS 100
12.2.4 DCE 105
12.2.5 SOAP 107
13 Suitability of the selected Internet technologies for CyberVote 110
13.1 Languages 110
13.2 Databases 110
13.3 Web servers 110
13.4 Application servers 111
13.5 Lightweight Directory Access Protocol 112
13.6 Interface towards data servers 112
13.7 WAP gateway 112
13.8 B2B integration software 113
13.9 Portal software 113
13.10 Middleware components 113
14 Conclusion 114
15 References 115
16 Abbreviations and acronyms 121
17 Points of Contact for further information 124
LIST OF FIGURES
Figure 1: Basic 3-tier architecture for CyberVote 12
Figure 2: Use of Internet technologies in a 3-tiers architecture 13
Figure 3 Application server range 40
Figure 4. XDI System 88
Figure 5. Requesting a service in Portal-to-Go 92
Figure 6. MTS and DCOM 104
LIST OF TABLES
Table 1: Features of Web server products 111
Table 2: Features of Application server products 111
Table 3: Features of LDAP server products 112
Table 4: Interest of the Internet technologies to CyberVote 114
1 INTRODUCTION |
1.1 Structure of the deliverable |
|
Deliverable D6 reports on authentication and security techniques, applicable Internet technologies, hardware platforms, mobile phones and Internet terminals. It consists of 3 separate volumes:
The present document is volume 2 of this deliverable. It is input to deliverable D7 'Report on mock-ups of architectures and overall system architecture' [4].
1.2 Scope of this volume |
|
This report reviews a selection of candidate Internet technologies that could be applicable to the CyberVote project. The interest of these technologies for the CyberVote project will be confirmed or not by Work Package 2.8 - Build mock-ups of architecture based on candidate solutions. The results of this Work Package will be deliverable D7 [4].
1.3 Structure of this volume |
|
First, the requirements used for the selection of candidate Internet technologies and software packages or languages which implements these Internet technologies are presented in chapter 2 CyberVote Requirements for Internet technologies.
Second, each candidate Internet technology is described in a separate chapter. The technology introduced and its interest for CyberVote is analysed. Then the software packages or languages which implement the technology and which have been selected with regards to the CyberVote requirements are then separately described. Finally, the 'alternatives' section explains in most cases why other software packages or languages have been rejected.
Third, the appropriateness to CyberVote of the reviewed Internet technologies is summarised by chapter 13 Suitability of the selected Internet technologies for CyberVote.
Fourth, suggestions considering the Internet technologies to be further evaluated by the WP2.8 are given as a conclusion.
