Changes between Version 28 and Version 29 of T12_Security/WS-Security
- Timestamp:
- 20/09/06 14:56:38 (14 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
T12_Security/WS-Security
v28 v29 97 97 It uses Wrapped key Encryption i.e. the target content is encrypted with a shared key and this itself is encrypted with the public key of the recipient. Shared key encryption was carried out with the AES algorithm using the Python [http://www.amk.ca/python/code/crypto.html Crypto] library. Encryption is carried out only not encryption ''and'' signature. Combining the two is a later task. 98 98 99 ==== Padding Input Data for Shared Key Encryption ==== 100 Algorithms including AES require that the length of the data to be encrypted be a multiple of the algorithms block size. There is a standard way to do this for XML encryption specified in: http://www.w3.org/TR/xmlenc-core/#sec-Alg-Block 101 102 With pyCrypto, no assumption is made and the padding must be added manually. 103 99 104 === Validate against pyXMLSec code === 100 105 Check the above against the pyXMLSec code as a form of validation. pyXMLSec e.g.s use enveloped style rather than reference list pointing to document elements that are encrypted. Write a test script to output the former in order to validate the result.