OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

wss message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [wss] Recently discover WSS security threat

> Then you're still just signing the header and not the fact that the
> header is *directly* inside the soap:Header element.

I don't see it.
	/soap:envelope/soap:header/*[wsu:id='abc']
As a simple XPath transform will find only nodes that are direct children
of the header and who have the wsu:id attribute with the right value.

In other words, you can do it with a simple XPath transform, not the more
complicated XPath2 transform. Right?

	/r$

-- 
Rich Salz                  Chief Security Architect
DataPower Technology       http://www.datapower.com
XS40 XML Security Gateway  http://www.datapower.com/products/xs40.html

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]