mace-opensaml-users - [OpenSAML] RE: Encrypting multiple elements with one session key
Subject: OpenSAML user discussion
List archive
- From: "Cantor, Scott E." <>
- To: "" <>
- Subject: [OpenSAML] RE: Encrypting multiple elements with one session key
- Date: Wed, 2 Mar 2011 21:54:33 +0000
- Accept-language: en-US
> Is this possible and, if so, how would I go about doing it? Assuming that
> it is
> possible, are there any drawbacks to doing this?
I think there are technically key hygiene issues involved in using a key more
than once, but I really don't know when it's ok or not ok. I think the usual
approach is to use key derivation off of a master key to do more than one
encryption operation, which I doubt is supported.
I know how to, sort of, manage using a fixed AES key in my library, no idea
about Java, which I'll assume is what you're asking about since you didn't
specify.
-- Scott
- [OpenSAML] Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- Re: [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- RE: [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/08/2011
- Re: [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Dan Ciarniello, 03/02/2011
- [OpenSAML] RE: Encrypting multiple elements with one session key, Cantor, Scott E., 03/02/2011
Archive powered by MHonArc 2.6.16.