[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [wss] Decrypting intermediaries
At 05:44 AM 8/13/2003, Tim Moses wrote: >Tony - Hal and I have discussed the question of decrypting intermediaries >and come up with the following text. > >Parts of a SOAP message may be encrypted in such a way that they can be >decrypted by an intermediary that is targeted by one of the SOAP headers. >In this case, the intermediary MAY leave the original <xenc:EncryptedData> >element in the message when forwarding it, or it MAY substitute the >corresponding plaintext. This choice SHOULD be determined by out-of-band >agreement. I don't understand the motivation for the last sentence. Indeed I think it would be preferable in most situations to use an in-band (i.e. something in the message) mechanism. >This text should go at the end of para 9.3.2 of "WSS:SOAP Message >Security-15". > >All the best. Tim. > >----------------------------------------------------------------- >Tim Moses >613.270.3183 > >You may leave a Technical Committee at any time by visiting >http://www.oasis-open.org/apps/org/workgroup/wss/members/leave_workgroup.php
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]