[xmlsec] nss updates

Andrew Fan Andrew.Fan@sun.com
Tue, 29 Jul 2003 15:11:32 +0800


Aleksey Sanin wrote:

> The XMLEnc specification does not have key type dependency for
> key transport / key wrapping.

Right. But it must be known which key type in processing if it is a key.

> And I wonder why do you need it?

I think xmlSec do not aim to implement a crypto algorithm if neccessary. 
Key wrap is a algorithm thing.

> Are you
> sure that produced result would match the one that XMLEnc spec
> requires?

Surely, they are all following the same standards.

>
> Aleksey
>
> Andrew Fan wrote:
>
>>
>>
>> Aleksey Sanin wrote:
>>
>>>> I'm not sure this distinction is visible in the
>>>> Transform Klass that does the RSA wrapping.  Aleksey?.
>>>> In order for me to use PK11_PubWrapSymKey instead of
>>>> PK11_PubEncryptRaw, I need to know the type of the
>>>> key I'm wrapping.
>>>>
>>> I am not sure you can get it easily right now. First of all, I would 
>>> suggest
>>> to check that PK11_PubWrapSymKey() produces the format required by 
>>> xmlenc specification.
>>
>>
>>
>> Can I get something from xmlSecTransformCtx? You know, when wraping a 
>> key,  firstly, a key data should should be known; when unwraping a 
>> key, the result should be used to create a new key data. So from the 
>> chain, can I get the key type?
>>
>> _______________________________________________
>> xmlsec mailing list
>> xmlsec@aleksey.com
>> http://www.aleksey.com/mailman/listinfo/xmlsec
>
>
>
>
> _______________________________________________
> xmlsec mailing list
> xmlsec@aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec