[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: NEW Issue: Element or Content Encryption on SignedEncryptedSupportingTokens Assertion
PLEASE DO NOT REPLY TO THIS EMAIL OR START A DISCUSSISON THREAD UNTIL THE ISSUE IS ASSIGNED A NUMBER. The issues coordinators will notify the list when that has occurred. Protocol: ws-sp WS-SecurityPolicy 1.2, Editors Draft 01, 01 September 2006 ws-securitypolicy-1.2-spec-ed-10 <http://www.oasis-open.org/apps/org/workgroup/ws-sx/download.php/20579/w s-securitypolicy-1.2-spec-ed-01-r10.doc> Artifact: spec Type: design Title: Element or Content Encryption on SignedEncryptedSupportingTokens Assertion Description: Section 8.5 SignedEncryptedSupportingTokens does not define whether to use Element Encryption or Content Encryption to encrypt the token. This will be difficult to interop with different implementations and create some confusion to the user. Section 8.6 EndorsingEncryptedSupportingTokens Assertions and Section 8.7 SignedEndorsing EncryptedSupportingToken Assertions have the same issue. Related issues: none Proposed Resolution: Add one sentence to Sec. 8.5, Sec. 8.6, and Sec. 8.7: "Content Encryption should be used for encrypting the supporting tokens.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]