You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2013/11/27 14:48:37 UTC
[jira] [Resolved] (SANTUARIO-32) Experimental single pass SAX xml
signature verification
[ https://issues.apache.org/jira/browse/SANTUARIO-32?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Colm O hEigeartaigh resolved SANTUARIO-32.
------------------------------------------
Resolution: Won't Fix
> Experimental single pass SAX xml signature verification
> -------------------------------------------------------
>
> Key: SANTUARIO-32
> URL: https://issues.apache.org/jira/browse/SANTUARIO-32
> Project: Santuario
> Issue Type: Improvement
> Security Level: Public(Public issues, viewable by everyone)
> Components: Java
> Environment: Operating System: All
> Platform: All
> Reporter: Raul Benito
> Priority: Minor
> Attachments: ASF.LICENSE.NOT.GRANTED--sax-patch.txt, ASF.LICENSE.NOT.GRANTED--sax.patch
>
>
> I attached a patch that includes an experimental (i.e. nearly working, and hard
> to use) single pass SAX xml signature verification.
> Right now it can only verify signatures that the name of the element signed, and
> the way it is c14n are known before hand (no other transformations are
> implemented, so no enveloped signatures right now). Some examples of use can be
> found in the src_samples/prb/SaxPrb.java. I have documented my progress somehow
> in my blog so please take a look to http://r-bg.com/apache for more info.
>
> This feature has been tested by some other people finding very big improvements
> both in memory consumption and in performance. But the API is really unstable
> and it is going to change radically in next versions.
> I'm expecting some help in order to design the API, and the functionality in
> order to include it (when polished) in the official distribution.
> Thanks,
> Raul
--
This message was sent by Atlassian JIRA
(v6.1#6144)