As for a secret key, one is required for custom encryption. It could be stored in a database, I suppose.
Thank you for the application server suggestion. In my case, Red Hat JBoss Enterprise Application Platform 6.x provides a password vault for sensitive configuration items, but the scope of this vault appears to be limited to configuration of the platform's subsystems, whether that occurs in the platform's configuration files or an application. -- View this message in context: http://cxf.547215.n5.nabble.com/Signature-Properties-That-Are-Encrypted-tp5741606p5741663.html Sent from the cxf-user mailing list archive at Nabble.com.
