its about security in XML.
right now i'm working in a project(customising the front-end of my company product). here we r planning to store our customizable parameters in an xml document, i mean...whether a textbox is mandatory, a form s required for that particular client and so on and its a java servlet based intranet type of application.
but for customizing the frond end do we need to download the xml in the client machine or can we do the parsing and send the required info to the client?
could u pls help me in choosing the secure way of doing it?