[
https://issues.apache.org/jira/browse/WSS-575?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15223944#comment-15223944
]
Colm O hEigeartaigh commented on WSS-575:
-----------------------------------------
What's the problem here exactly? We can already create DigestMethods with
SHA-256 on the outbound side. On the inbound side, does it fail policy
validation? Or do you want to add support to AlgorithmSuite to check the
encryption digest algorithm?
Colm.
> Support for Digest other than sha1 in xenc:EncryptionMethod
> ------------------------------------------------------------
>
> Key: WSS-575
> URL: https://issues.apache.org/jira/browse/WSS-575
> Project: WSS4J
> Issue Type: New Feature
> Components: WSS4J Core
> Affects Versions: 2.1.3
> Reporter: Stefan Müller
> Assignee: Colm O hEigeartaigh
> Labels: security
>
> To support a specific security profile we need to be able to set the
> DigestMethod to sha256. We already have a custom algorithmsuite implementing
> org.apache.wss4j.policy.model.AlgorithmSuite supporting everyhting but the
> ds:DigestMethod:
> <xenc:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep";>
> <xenc11:MGF
> xmlns:xenc11="http://www.w3.org/2009/xmlenc11#";
> Algorithm="http://www.w3.org/2009/xmlenc11#mgf1sha256"/>
> *<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha256"; />*
> </xenc:EncryptionMethod>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
