OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

wss-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: WS-Security Signing Standards

Good Morning,

 

I am writing on behalf of my project team regarding a possible discrepancy in the published WS-Security standards:

 

http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/ws-securitypolicy-1.2-spec-os.html#_Toc161826550

 

Section 6 defines RSAwithSHA1 as the required signing standard.  The XML Namespace referred by WSS (XML namespace defined at http://www.w3.org/TR/xmldsig-core1/#sec-Algorithms) requires RSA-SHA256 and discourages RSA-SHA1.

 

Is this a known contradiction within the current standard definitions?

 

Thanks

 

 

--

Rob Mason

 

**********************************************************************
This email and any files transmitted with it are private and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please return it to the address
it came from telling them it is not for you and then delete it from your system.
This email message has been swept for computer viruses.

**********************************************************************

**********************************************************************

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]