PROTECTED]
Sent: jeudi, 30. mars 2006 11:07
To: security-dev@xml.apache.org
Cc: [EMAIL PROTECTED]
Subject: Re: Problem with rsa-1_5 padding mechanism
Hess Yvan wrote:
> - Does it means that XML apache security using RSA/ECB/PKCS1Padding is
> the correct one and that IBM XSS4J contains a critic
Hess Yvan wrote:
> - Does it means that XML apache security using RSA/ECB/PKCS1Padding is
> the correct one and that IBM XSS4J contains a critical bug ?
> - Is it right to map RSA 1.5 alg to a Java Cipher "RSA/ECB/PKCS1Padding"
> ?
PKCS1Padding is the most common form of padding for RSA. There is
lto:[EMAIL PROTECTED]
Sent: jeudi, 30. mars 2006 10:25
To: security-dev@xml.apache.org
Subject: Re: Problem with rsa-1_5 padding mechanism
Hi,
W3C is being very clear about padding while encrypting using RSA 1.5
alg:
http://www.w3.org/TR/xmlenc-core/#sec-Alg-KeyTransport
In other words: you h
Hi,
W3C is being very clear about padding while encrypting using RSA 1.5 alg:
http://www.w3.org/TR/xmlenc-core/#sec-Alg-KeyTransport
In other words: you have to use padding. Btw, padding is not something complex
and can be easily
implemented.
Hope it helps,
Milan
--- Hess Yvan <[EMAIL PROTEC
