mace-opensaml-users - [OpenSAML] Encrypting multiple elements with one session key
Subject: OpenSAML user discussion
List archive
- From: Dan Ciarniello <>
- To: "''" <>
- Subject: [OpenSAML] Encrypting multiple elements with one session key
- Date: Wed, 2 Mar 2011 13:49:23 -0800
- Accept-language: en-US
- Acceptlanguage: en-US
|
I am looking at creating an Assertion where the nameid and
attribute elements are encrypted using AES session keys and the rsa-oaep
transport mechanism. The most obvious way of doing this means that a
separate AES key is generated for the nameid and each attribute with each AES key
being individually encrypted with the RSA key and attached to the appropriate
element. What I would prefer is that a single AES key is used to encrypt
each element and that the AES key is encrypted once only and attached to the
assertion in some way. Is this possible and, if so, how would I go about doing it?
Assuming that it is possible, are there any drawbacks to doing this? Thanks, Dan. |
- [OpenSAML] Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- Re: [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- RE: [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/08/2011
- Re: [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
Archive powered by MHonArc 2.6.16.