If you are doing REST services, you should be using SSL/TLS over HTTP. Transport security will encrypt anything that is on the wire and is what REST consumers expect. WS-Security focuses on XML-Encryption and XML-DigSig with an expectation that you are moving XML payloads. JSON would not be recommended here. If you need to encrypt JSON data at rest you could look at PGP or the like also.
On Wed, Apr 18, 2012 at 1:30 PM, semecxf <[email protected]> wrote: > Any api for doing json encryption and decryption? > I thought JAX-RS: XML Security can do json encryption and decryption, but > it > does not appear it can. > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/Rest-Json-Encryption-and-decryption-tp5649768p5649768.html > Sent from the cxf-user mailing list archive at Nabble.com. > -- Chris Riley, Partner HKM Consulting LLC (w) hkmconsultingllc.com (o) 774.553.5314 (m) 508.273.3102 (f) 774.553.5316
