[prev in list] [next in list] [prev in thread] [next in thread] 

List:       woden-dev
Subject:    [jira] [Created] (WSS-406) Add the ability to define which algorithms are acceptable when processing
From:       "Colm O hEigeartaigh (JIRA)" <jira () apache ! org>
Date:       2012-10-01 15:57:08
Message-ID: 2125518177.148211.1349107028829.JavaMail.jiratomcat () arcas
[Download RAW message or body]

Colm O hEigeartaigh created WSS-406:
---------------------------------------

             Summary: Add the ability to define which algorithms are acceptable when \
processing a security header  Key: WSS-406
                 URL: https://issues.apache.org/jira/browse/WSS-406
             Project: WSS4J
          Issue Type: Improvement
    Affects Versions: 1.6.7
            Reporter: Colm O hEigeartaigh
            Assignee: Colm O hEigeartaigh
             Fix For: 1.6.8



This task is to add the ability to define which algorithms are acceptable when \
processing a security header. In WS-SecurityPolicy, you can define an \
"AlgorithmSuite" (e.g. sp:Basic128) which describes which algorithms must be used. \
Currently there is no way to enforce this in WSS4J.

An AlgorithmSuite class will be added to WSS4J, which a third party library can \
populate. This will hold acceptable values for things like signature method, digest, \
c14n algorithms etc., as well as key sizes, and encryption symmetric and key wrapping \
algorithms etc. If WSS4J encounters an Element that does not match one of these \
values then an exception is thrown.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org


[prev in list] [next in list] [prev in thread] [next in thread]