You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-c-dev@ws.apache.org by "S.Uthaiyashankar (JIRA)" <ji...@apache.org> on 2008/02/29 06:10:51 UTC

[jira] Assigned: (RAMPARTC-74) wrong encryption with oxs_token_build_encrypted_data_element

     [ https://issues.apache.org/jira/browse/RAMPARTC-74?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

S.Uthaiyashankar reassigned RAMPARTC-74:
----------------------------------------

    Assignee: S.Uthaiyashankar  (was: Ruchith Udayanga Fernando)

> wrong encryption with oxs_token_build_encrypted_data_element
> ------------------------------------------------------------
>
>                 Key: RAMPARTC-74
>                 URL: https://issues.apache.org/jira/browse/RAMPARTC-74
>             Project: Rampart/C
>          Issue Type: Bug
>          Components: Rampart-core
>            Reporter: Lukas JOSEFIK
>            Assignee: S.Uthaiyashankar
>
> if you encrypt data and use oxs_token_build_encrypted_data_element, there can be problem with signed encrypted data verification. Problem is that oxs_token_build_encrypted_data_element calls axiom_element_create, which adds ecnrypteddata element to the end of children list. but if we consider element X and we want encrypt subelement B(<X>0x0a<B>0x0a<X>), encryption ends with <X>0x0a0x0a<EncryptedData...><X>. After decryption the data looks <X>0x0a0x0a<B><X> and verification fails...

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.