Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-5013

Need support for SHA256 Signature Algorithms

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.6.2
    • 2.6.9, 2.7.6
    • WS-* Components
    • None

    • All supported platforms

    • Moderate

    Description

      Due to the weakness of SHA1 algorithm, US National Institute of Standards and Technology (NIST) has recommended that SHA256 or higher algorithms be used. Using SHA256 is also required by Federal Information Processing Standard (FIPS).
      Currently, there is no way to specify SHA256 Signature algorithms when signing a message part using Web services security.

      Attachments

        1. sha256_sigalg.patch
          0.8 kB
          Syed Abdul Wadood
        2. Sha2SignatureAlgorithmTest.java
          3 kB
          Syed Abdul Wadood

        Activity

          People

            coheigea Colm O hEigeartaigh
            sawadood Syed Abdul Wadood
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - 96h
                96h
                Remaining:
                Remaining Estimate - 96h
                96h
                Logged:
                Time Spent - Not Specified
                Not Specified