Uploaded image for project: 'WSS4J'
  1. WSS4J
  2. WSS-340

support Certificates revocation check before encrypt on sender side

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.6.4
    • 1.6.5
    • None
    • None

    Description

      currently WSS4J can support Certificates revocation check(CRL and OCSP) when receiver side validate a signature. Similarly WSS4J should also support Certificates revocation check before encrypt on sender side, as in both case it's possible to use a revoked certificate. We can do it in EncryptionAction where we can load encrypt crypto and use the verifyTrust(certs, enableRevocation, enableOCSP) already there.

      Attachments

        1. WSS-340.patch
          10 kB
          Freeman Yue Fang

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            coheigea Colm O hEigeartaigh
            ffang Freeman Yue Fang
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment