Changes between Version 28 and Version 29 of T12_Security/WS-Security


Ignore:
Timestamp:
20/09/06 14:56:38 (13 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • T12_Security/WS-Security

    v28 v29  
    9797It uses Wrapped key Encryption i.e. the target content is encrypted with a shared key and this itself is encrypted with the public key of the recipient.  Shared key encryption was carried out with the AES algorithm using the Python [http://www.amk.ca/python/code/crypto.html Crypto] library.  Encryption is carried out only not encryption ''and'' signature.  Combining the two is a later task. 
    9898 
     99==== Padding Input Data for Shared Key Encryption ==== 
     100Algorithms including AES require that the length of the data to be encrypted be a multiple of the algorithms block size.  There is a standard way to do this for XML encryption specified in: http://www.w3.org/TR/xmlenc-core/#sec-Alg-Block 
     101 
     102With pyCrypto, no assumption is made and the padding must be added manually. 
     103 
    99104=== Validate against pyXMLSec code === 
    100105Check the above against the pyXMLSec code as a form of validation.  pyXMLSec e.g.s use enveloped style rather than reference list pointing to document elements that are encrypted.  Write a test script to output the former in order to validate the result.