Context Navigation

Changes between Version 28 and Version 29 of T12_Security/WS-Security

-                      v28
+                      v29
 It uses Wrapped key Encryption i.e. the target content is encrypted with a shared key and this itself is encrypted with the public key of the recipient.  Shared key encryption was carried out with the AES algorithm using the Python [http://www.amk.ca/python/code/crypto.html Crypto] library.  Encryption is carried out only not encryption ''and'' signature.  Combining the two is a later task.
+==== Padding Input Data for Shared Key Encryption ====
+Algorithms including AES require that the length of the data to be encrypted be a multiple of the algorithms block size.  There is a standard way to do this for XML encryption specified in: http://www.w3.org/TR/xmlenc-core/#sec-Alg-Block
+With pyCrypto, no assumption is made and the padding must be added manually.
 === Validate against pyXMLSec code ===
 Check the above against the pyXMLSec code as a form of validation.  pyXMLSec e.g.s use enveloped style rather than reference list pointing to document elements that are encrypted.  Write a test script to output the former in order to validate the result.