WSS4J
  1. WSS4J
  2. WSS-111

Some work on UsernameToken derived keys

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.5.5
    • Component/s: None
    • Labels:
      None

      Description

      The UsernameToken profile 1.1 provides for using UsernameTokens for key derivation (section 4: Key Derivation). We currently have some limited support in UsernameToken.java for generating and parsing UsernameTokens with derived keys, but no tests.

      The attached patch contains the following improvements:

      1) Two bugs in processing a Username Token in UsernameToken.java with a derived key are fixed + some cleanup to the code.

      2) WSSecUsernameToken.java is extended to wrap the key derivation functionality of UsernameToken.java.

      3) A unit test is added for UsernameToken.java, as well as two tests which use a derived key from a username token for encryption and signing purposes.

      The processing of a UsernameToken with derived keys is left for a future release.

      1. wss4j_derived_keys.patch
        17 kB
        Colm O hEigeartaigh

        Activity

        Colm O hEigeartaigh created issue -
        Colm O hEigeartaigh made changes -
        Field Original Value New Value
        Attachment wss4j_derived_keys.patch [ 12380185 ]
        Fred Dushin made changes -
        Assignee Ruchith Udayanga Fernando [ ruchith ] Fred Dushin [ fdushin ]
        Colm O hEigeartaigh made changes -
        Fix Version/s 1.5.5 [ 12313215 ]
        Colm O hEigeartaigh made changes -
        Assignee Fred Dushin [ fdushin ] Colm O hEigeartaigh [ coheigea ]
        Colm O hEigeartaigh made changes -
        Resolution Fixed [ 1 ]
        Status Open [ 1 ] Resolved [ 5 ]
        Colm O hEigeartaigh made changes -
        Status Resolved [ 5 ] Closed [ 6 ]

          People

          • Assignee:
            Colm O hEigeartaigh
            Reporter:
            Colm O hEigeartaigh
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development