OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

wss-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [wss-comment] Password Digest

Jerry Schwarz said:

"Put the password in clear into the UsernameToken and then encrypt the UsernameToken. And no, WS-Security doesn't tell you how to distribute the public key to all the clients."

Though it is not a standard, http://msdn.microsoft.com/webservices/default.aspx?pull=/library/en-us/dnwebsrv/html/wssecdrill.asp contains a bunch of examples, including the following which demonstrates how to encrypt a plaintext UsernameToken:

<?xml version="1.0" encoding="utf-8"?>
<soap:Envelope xmlns:soap="..." xmlns:wsu="..." xmlns:wsse="...">
    <wsse:Security soap:mustUnderstand="1">
      <xenc:EncryptedKey xmlns:xenc="...">
         Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"; />
        <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#";>
            <wsse:KeyIdentifier ValueType="wsse:X509v3">
          <xenc:DataReference URI="#EncryptedContent-a0bf2920" />
      <wsse:UsernameToken xmlns:wsu="..." wsu:Id="SecurityToken-d119b99b">
        <xenc:EncryptedData Id="EncryptedContent-a0bf2920"
         Type="http://www.w3.org/2001/04/xmlenc#Content"; xmlns:xenc="...">
           Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"; />
    <AddEntry xmlns="http://weblogs.contoso.com/wse/samples/2003/07";>
        <title>Saw Terminator III last night</title>
        <author>Joe Blow</author>
        <content>The special effects were over the top.</content>



This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and destroy this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]