You are viewing a plain text version of this content. The canonical link for it is here.
Posted to c-user@axis.apache.org by Uthaiyashankar <sh...@wso2.com> on 2009/05/27 05:12:19 UTC

[ANN][Rampart/C] Apache Rampart/C 1.3.0 Released

We are pleased to announce the release of Apache Rampart/C version 1.3.0.
You can download this release from
http://ws.apache.org/rampart/c/download.cgi

Key features
-------------
1. Ability to send and verify UsernameTokens with
    - Username and PlainText password
    - Username and Digested password

2. Ability to send Timestamp tokens

3. SOAP message encryption
    - With derived key support for improved security
    - Symmetric and Asymmetric modes of operations
    - Support for AES and Tripple DES encryption
    - Signature encryption
    - Keys encryption

4. SOAP message signature
    - XML signature with RSA-SHA1
    - Message authentication with HMAC-SHA1
    - Signature confirmation support
    - SOAP Header signing

5. WS-Security Policy (spec 1.1 & spec 1.2) based configurations
    - Support for both Symmetric as well as Asymmetric policy bindings
    - Support for different modes of key identifiers
    - Support for different algorithm suites
        [Basic128, Basic 192, Basic256, TrippleDES, Basic128Rsa15,
Basic192Rsa15,Basic256Rsa15, TripleDesRsa15]
    - Support for IssuedToken assertion in client side.
    - Support for SAMLToken assertion.

6. Replay detection support
    - Easy to use built-in replay detection module
    - Ability to deploy a customized replay detection module

7. Different protection orders
    - Encrypt before signing
    - Sign before encrypting

8. Extensible modules
    - Password callback module
    - Authentication module
    - Credentials module
    - Replay detection module
    - Secure conversation token module

9. Keys management
    - Support for X509 token profile
    - Support for Key identifiers, Thumb prints, Issuer/Serial pairs,
Embedded and Direct references
    - Support for PKCS12 keystore

10. WS-Secure Conversation Language support
    - Establishing Security Context and thereby maintaining a session
    - Per message key derivation
    - Support for stored securtiy context token
    - Rahas module support to give STS functionality to a service

11. WS-Trust Language support
    - Security Token Services (STS)
    - STS Client
    - Server and Client entrophy support

12. SAML Support
    - Support for Creation and Processing of SAML Core 1.1 Assertions
    - SAML Token as Sign Supporting Token
    - Signing and Encryption with SAML

10. Other
    - Easy to use deployment scripts
    - A comprehensive set of samples

Major Changes Since Last Release
--------------------------------
1. WS-Secure Conversation Language support
2. WS-Trust Language support
3. Rahas module to give STS support to a service
4. PKCS12 Keystore support
5. Security Policy 1.2 support
6. Memory leak fixes
7. Many bug fixes

Apache Rampart/C 1.3.0 works with the Apache Axis2/C 1.6.0
http://ws.apache.org/axis2/c/download.cgi

Issues can be reported here.
http://issues.apache.org/jira/browse/RAMPARTC

We welcome your early feedback.
Thank you for your interest in Rampart/C.

--Apache Rampart/C Team--
http://ws.apache.org/rampart/c/