[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: NEW ISSUE: No support for message level encryption of headers for WSS 1.0?
PLEASE DO NOT REPLY TO THIS EMAIL OR START A DISCUSSISON THREAD UNTIL THE ISSUE IS ASSIGNED A NUMBER. The issues coordinators will notify the list when that has occurred. Protocol: ws-sp http://www.oasis-open.org/apps/org/workgroup/ws-sx/download.php/18837/ws -securitypolicy-1.2-spec-ed-01-r07.pdf Artifact: spec Type: design Title: No support for message level encryption of headers for WSS 1.0? Description: Line 691-693 under /EncryptedParts/Header: "Such encryption will encrypt such elements using WSS 1.1 Encrypted Headers. As such, if WSS 1.1 Encrypted Headers are not supported by a service, then headers cannot be encrypted using message level security." Does this mean ws-sp prohibits the encryption of headers using WSS 1.0? Or does this mean that *if* you're using WSS 1.1 you have to use EncryptedHeader? If the latter is the case, can /EncryptedParts/Header still be used to specify header encryption for WSS 1.0, or should EncryptedElements be used? _______________________________________________________________________ Notice: This email message, together with any attachments, may contain information of BEA Systems, Inc., its subsidiaries and affiliated entities, that may be confidential, proprietary, copyrighted and/or legally privileged, and is intended solely for the use of the individual or entity named in this message. If you are not the intended recipient, and have received this message in error, please immediately return this by email and then delete it.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]