subject:"RE\: Better support for newer signature algorithm"

Re: Better support for newer signature algorithm

2018-10-16 Thread Colm O hEigeartaigh

bout using RSA-SHA256 then either define a custom AlgorithmSuite or use the property to override the signature algorithm. Colm. > > -Original Message- > From: Colm O hEigeartaigh > Sent: Thursday, October 11, 2018 9:48 AM > To: users@cxf.apache.org > Subject: Re: Bette

RE: Better support for newer signature algorithm

2018-10-11 Thread Mark Diskin

are going more to a programmic definition? -Original Message- From: Colm O hEigeartaigh Sent: Thursday, October 11, 2018 9:48 AM To: users@cxf.apache.org Subject: Re: Better support for newer signature algorithm Hi, The problem is that the WS-SecurityPolicy specs have never been updated to use

Re: Better support for newer signature algorithm

2018-10-11 Thread Colm O hEigeartaigh

Hi, The problem is that the WS-SecurityPolicy specs have never been updated to use newer signature algorithms (RSA-SHA 256, GCM, etc.) that are available in the newer XML Signature specs. So we have no standard AlgorithmSuites that use RSA-SHA 256. The best we can do is to configure the signature