[xmlsec] nss updates
Andrew Fan
Andrew.Fan at sun.com
Tue Jul 29 00:11:32 PDT 2003
Aleksey Sanin wrote:
> The XMLEnc specification does not have key type dependency for
> key transport / key wrapping.
Right. But it must be known which key type in processing if it is a key.
> And I wonder why do you need it?
I think xmlSec do not aim to implement a crypto algorithm if neccessary.
Key wrap is a algorithm thing.
> Are you
> sure that produced result would match the one that XMLEnc spec
> requires?
Surely, they are all following the same standards.
>
> Aleksey
>
> Andrew Fan wrote:
>
>>
>>
>> Aleksey Sanin wrote:
>>
>>>> I'm not sure this distinction is visible in the
>>>> Transform Klass that does the RSA wrapping. Aleksey?.
>>>> In order for me to use PK11_PubWrapSymKey instead of
>>>> PK11_PubEncryptRaw, I need to know the type of the
>>>> key I'm wrapping.
>>>>
>>> I am not sure you can get it easily right now. First of all, I would
>>> suggest
>>> to check that PK11_PubWrapSymKey() produces the format required by
>>> xmlenc specification.
>>
>>
>>
>> Can I get something from xmlSecTransformCtx? You know, when wraping a
>> key, firstly, a key data should should be known; when unwraping a
>> key, the result should be used to create a new key data. So from the
>> chain, can I get the key type?
>>
>> _______________________________________________
>> xmlsec mailing list
>> xmlsec at aleksey.com
>> http://www.aleksey.com/mailman/listinfo/xmlsec
>
>
>
>
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
More information about the xmlsec
mailing list