You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-dev@ws.apache.org by "Paul Fremantle (JIRA)" <ji...@apache.org> on 2007/12/18 10:19:43 UTC

[jira] Created: (RAMPART-126) Support "Known Key" symmetric encryption and/or signature with WS-Policy

Support "Known Key" symmetric encryption and/or signature with WS-Policy
------------------------------------------------------------------------

                 Key: RAMPART-126
                 URL: https://issues.apache.org/jira/browse/RAMPART-126
             Project: Rampart
          Issue Type: Improvement
          Components: rampart-policy
            Reporter: Paul Fremantle


Suppose I have two Rampart engines talking, and I want a quick and easy way to set up encryption between them, I would like to use symmetric key encryption. I simply want to put the key into the config of each engine and then let them talk. That way I have no need to specify keystores, certificates, etc. This is equivalent to sample09 in the old config style.



-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (RAMPART-126) Support "Known Key" symmetric encryption and/or signature with WS-Policy

Posted by "Nandana Mihindukulasooriya (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/RAMPART-126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12553933 ] 

Nandana Mihindukulasooriya commented on RAMPART-126:
----------------------------------------------------

I think this will be very useful. When thinking about the implementation of this without violating  ws - security policy language specification, two questions came to my mind. 

1. How can we define this key using a token assertion 

2. How can we create reference to this key

As ws - security policy language is open for extension we define a new token assertion for this and define a standard way to reference these keys. But then it will break the interoperability. If there is a way to get requirement done using  default security policy assertions defined in the specification we can make this interoperable too. Can we use a SecurityContextToken for this ? and may be a SHA1 of the binary key as the reference ?

> Support "Known Key" symmetric encryption and/or signature with WS-Policy
> ------------------------------------------------------------------------
>
>                 Key: RAMPART-126
>                 URL: https://issues.apache.org/jira/browse/RAMPART-126
>             Project: Rampart
>          Issue Type: Improvement
>          Components: rampart-policy
>            Reporter: Paul Fremantle
>
> Suppose I have two Rampart engines talking, and I want a quick and easy way to set up encryption between them, I would like to use symmetric key encryption. I simply want to put the key into the config of each engine and then let them talk. That way I have no need to specify keystores, certificates, etc. This is equivalent to sample09 in the old config style.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.