D'oh. I should have noticed that. I imagine the intent really is to sign with a private key, which of course makes perfect sense. Assuming that's the case, can anyone answer the question?
________________________________ From: Brent Putman [mailto:[EMAIL PROTECTED] Sent: Friday, March 21, 2008 3:02 PM To: security-dev@xml.apache.org Subject: Re: encrypt with pkcs12 private key Also, you said "encryption", but the exceptions below seem to indicate that you are trying to sign, not encrypt. Jesse Pelton wrote: Why would you want to encrypt with a private key? Anyone with the corresponding public key (which is, after all, public) can decrypt the message, rendering the encryption useless. ________________________________ From: huang zhimin [mailto:[EMAIL PROTECTED] Sent: Friday, March 21, 2008 12:37 PM To: security-dev@xml.apache.org Subject: encrypt with pkcs12 private key I use BouncyCastleProvider to get a private key from a p12 file, when i use the private key to encrypt xml document, i get the exception as follows: org.apache.xml.security.signature.XMLSignatureException: No installed provider supports this key: org.bouncycastle.jce.provider.JCERSAPrivateCrtKey Original Exception was org.apache.xml.security.signature.XMLSignatureException: No installed provider supports this key: org.bouncycastle.jce.provider.JCERSAPrivateCrtKey Original Exception was java.security.InvalidKeyException: No installed provider supports this key: org.bouncycastle.jce.provider.JCERSAPrivateCrtKey does it mean that xml security do not support pkcs12 keystore? -- My msn spaces: http://flyerhzm.spaces.live.com
