Hi Dipesh Thanks for getting back to me. Would you mind answering to the following questions?
Did your HSM provide a JCE Api? Did you use it with wss4j? Can you share more about how you set up cxf or wss4j to work with your HSM? Thanks, Chris -- Living proof of 20 years of software ingenuity: http://netcetera.com/20years Christian Mäder | [email protected] | T +41 44 297 57 24 | Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com | -----Original Message----- From: Dipesh Garg [mailto:[email protected]] Sent: Thursday, January 21, 2016 9:46 AM To: [email protected]; Christian Mäder <[email protected]> Subject: RE: HSM expierence Hi , I have used ws security , we create an authenticate key which is encrypted , and when we received this authenticate variable in request header , we again do decryption and do validation Dipesh Garg -----Original Message----- From: Christian Mäder [mailto:[email protected]] Sent: 21 January 2016 13:45 To: [email protected] Subject: HSM expierence Hi Has anyone experience with running CXF-based SOAP web services with encryption according to ws security (wss) and private keys stored in an HSM (i.e. hardware protected private keys)? I would be very glad to hear about your successful or failed endeavors. Cheers, Chris -- Living proof of 20 years of software ingenuity: http://netcetera.com/20years Christian Mäder | [email protected] | T +41 44 297 57 24 | Netcetera AG | 8040 Zürich | Switzerland | http://netcetera.com |
