org.apache.xml.security.encryption.XMLCipher.doFinal(XMLCipher.java:825)
BR,ivan
-Original Message-
From: Arshad Noor [mailto:arshad.n...@strongauth.com]
Sent: Tuesday, January 05, 2010 4:06 PM
To: security-dev@xml.apache.org
Subject: Re: FW:
In the software that I write, Scott, I enforce this
Arshad Noor wrote on 2010-01-05:
> In the software that I write, Scott, I enforce this. From
> experience, I also know that browsers and S/MIME User Agents
> (Outlook, Thunderbird) also enforce this.
Those are applications. If they want to enforce it, that's fine, but it
doesn't belong in an XML
In the software that I write, Scott, I enforce this. From
experience, I also know that browsers and S/MIME User Agents
(Outlook, Thunderbird) also enforce this.
While I presume that cryptographic frameworks such as JCE,
CAPI, CNG, etc. also enforce this, I do not make assumptions
about the degre
Arshad Noor wrote on 2010-01-05:
> Not with well-behaved software that conform to PKIX standards.
>
> Signing keys are meant to only sign objects, while "Exchange"
> keys are meant for encryption/decryption. That is the reason
> why decryption works with the first, but not with the second.
Out o
Not with well-behaved software that conform to PKIX standards.
Signing keys are meant to only sign objects, while "Exchange"
keys are meant for encryption/decryption. That is the reason
why decryption works with the first, but not with the second.
Arshad Noor
StrongAuth, Inc.
Bolcina Ivan wrot
Hi.
I have a encrypted xml.
I managed to decrypt xml with this key
Alias=|Tomaz 3 Grenko's Encryption Certificate|
is certificate=|CN=Tomaz 3 Grenko, O=TestCA, C=si
is private key=|true
key=RSAPrivateKey [size=2048 bits, type=Exchange,
container=4|3|1|0|X8AQID1iQeev7AsBo6NoVQ==]
key.algor
Could somebody please help me on my last request to make the legacy signature
validation work for the (see below)
Thanks!
--- On Thu, 1/29/09, Harakiri wrote:
> From: Harakiri
> Subject: Re: Invalid Signature problem through Empty elements are converted
> to start-end tag pairs
> To: secur
-Original Message-
From: Raul Benito [mailto:[EMAIL PROTECTED]
Sent: 25 March 2005 21:35
To: security-dev@xml.apache.org; fx-dev@ws.apache.org
Subject: Re: FW: Signing huge SOAP requests
Depending the structure of signature you can try this
patch(http://issues.apache.org/bugzilla
Raul,
Unfortunately, this means we will need changes to wss4j to use your
code in the bug report. Right?
-- dims
On Fri, 25 Mar 2005 22:34:59 +0100, Raul Benito
<[EMAIL PROTECTED]> wrote:
> Depending the structure of signature you can try this
> patch(http://issues.apache.org/bugzilla/show_bug.
Depending the structure of signature you can try this
patch(http://issues.apache.org/bugzilla/show_bug.cgi?id=32657)
It Is a single pass sax verification, I have manage to verify 100MB
XML files with just 10MB of footprint. But it only works with some
kind of signatures out of the box(but it can be
All,
Are there any hints from the XML-security side?
Thanks
Yves
-Original Message-
From: Werner Dittmann [mailto:[EMAIL PROTECTED]
Sent: Freitag, 25. März 2005 09:24
To: Yves Langisch
Cc: [EMAIL PROTECTED]; fx-dev@ws.apache.org; [EMAIL PROTECTED]
Subject: Re: Signing huge SOAP requests
Did this mail reach the group ?
***
Hi Raul and All,
Thanks for replying
Here are the files...
CreateRx.xml is the input xml document to be signed
xslt.xslt is the XSLT Transform file to be applied
sign.xml is the signed document containing the appended XML DSig Structure.
If I use the
Hi all,
does somebody have some experiences with creating XML signatures by
using the CAPI and an RSA key and can help us to slove the below
explained problem?
thanks, Eckehard
-Original Message-
From: Berin Lautenbach [mailto:[EMAIL PROTECTED]
Sent: Donnerstag, 28. Oktober 2004 12:4
13 matches
Mail list logo
