[WSS-340] support Certificates revocation check before encrypt on sender side - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.6.4
Fix Version/s: 1.6.5
Component/s: None
Labels:
None

Description

currently WSS4J can support Certificates revocation check(CRL and OCSP) when receiver side validate a signature. Similarly WSS4J should also support Certificates revocation check before encrypt on sender side, as in both case it's possible to use a revoked certificate. We can do it in EncryptionAction where we can load encrypt crypto and use the verifyTrust(certs, enableRevocation, enableOCSP) already there.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

WSS-340.patch
17/Feb/12 05:52
10 kB
Freeman Yue Fang

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Freeman Yue Fang

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 15/Feb/12 09:16

Updated:: 05/Mar/12 13:21

Resolved:: 17/Feb/12 15:12