Digital singning and encryption

I developed Web Sevices with Soap messages Encripted and Signed with Apache XML Security (AXIS compatible) but now I'm working with Oracle 10g. I like to use the 10g's new features (JAX-RPC, Soap, UDDI, etc) but I like to still sending Encripted and Signed messages. Anyone know if Xml Security is compatible with 10g or if there are another Library like Apache's one?
Thank You
Wilberto Montoya

Hi Amber,
The work is based on the finalization and imminent publication of the
wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
our outstanding support organization, reference CR134931, for details.
Regards,
Bruce
Amber Osterman wrote:
>
I recently attended the webinar on Web Services interoperability w/ .NET. The
presenter mentioned that digital signatures and encryption did not work w/ Workshop
8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
NET and Workshop using digital signatures and encryption.

Similar Messages

  • Digital Signatures and Encryption in Yosemite Mail

    After upgrading to Yosemite, I am having difficulty using the Mac Mail app to send digitally signed and encrypted email.
    Before the upgrade to Yosemite, I was able to send signed and encrypted emails using certificate/keys in my keychain using both the Mac Mail app and Microsoft Outlook 2011 for Mac.
    After upgrading, I am still able to send signed and encrypted message in Outlook, but the Mac Mail app gives the following error when I attempt to send a signed email:
    'You don’t have a trusted certificate in your keychain that matches the email address “XXXX@XXXX”. Without a certificate, you can’t sign messages sent from this address.'   (Actual name replaced)
    When I look at my certificates in my keychain, a certificate is available with "Usage: Digital Signature" that has the email address from the error message "XXXX@XXXX" with exact case in the RFC 822 Name.
    Another interesting piece of data that might help track this down is that when I first launch the Mac Mail application, the Mac Mail application is able to successfully decrypt emails that have been previously sent encrypted to me.  HOWEVER, after I attempt to send an email and get the "You don’t have a trusted certificate..." error message, these emails are no longer able to be decrypted.  I get the "Unable to decrypt message" header above the message and the content of the message is just a "smime.p7m".  If I close the mail application and restart it, these encrypted message are once again decrypt-able until I attempt to send a message.
    It almost seems like things are working until mail tries to access the keychain.
    I have attempted to delete my certificate and keys from my keychain and then adding those items again.
    I have attempted to close the mail application and reopen it.
    I have attempted to reboot my computer.

    1.  I want to confirm that this is still an issue for me in 10.10.1 and mail Version 8.1 (1993)
    2.  I have another data point.
    At my office I have wired networking and wireless networking available.  Primarily I utilize the wired networking for access to network drives, etc.
    When using the wired networking, I experience all the problems that have been catalogued in this thread.  Can't sign, can't encrypt, can't close the compose window after the mail program fails to find my certificate.
    However, when I switch to wireless networking before starting the mail application, digital signatures and encryption seem to work!  This is pretty weird behavior.  Make sure to restart mail if you were previously wired.
    Here are some theories:
    Something to do with OCSP?  When I am wired vs wireless I am on different ip subnets and subject to different firewall rule sets.  Perhaps OCSP is trying to determine the status of the certificate and failing? 
    Here are some things I have tested:
    I switched to a different official apple brand thunderbolt to ethernet adapter with no change in behavior
    I disabled wireless and disconnected my wired network.  So no network access at all.  Signatures and encryption work!  The message obviously does not send, but it appears in my outbox and I don't get the signature error.  When I reconnect my wired cable, the message sends successfully and appears as encrypted in my sent folder!
    I have attempted to disable OCSP by using "Keychain Access --> Preferences --> Certificates Tab --> OCSP (OFF) and CRL (OFF)" but this hasn't made a difference in the behavior of wired networking.
    Ran a TCPDUMP on traffic to the OCSP service but didn't see any traffic when I attempted to send a message and received the signature error
    I am pretty stumped on this.  This is very odd behavior
    Does anyone else experience this behavior?

  • Digital Signatures and Encryption

    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    .NET and Workshop using digital signatures and encryption.

    Hi Amber,
    The work is based on the finalization and imminent publication of the
    wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
    our outstanding support organization, reference CR134931, for details.
    Regards,
    Bruce
    Amber Osterman wrote:
    >
    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    NET and Workshop using digital signatures and encryption.

  • Digital Signature and Encryption using IAIK

    What support does Netweaver provide for Digital Signatures and Encryption. Does it use IAIK for implementing security. It will be good if somebody could give some starting points.

    Welcome to SDN!!!
    Starting point: http://service.sap.com/security
    You can use sapcryptolib (provided by SAP) for Digital Signatures and Encryption. (Also described in the link mentioned above).
    Regards
    Juergen

  • Sap PI-xml Digital Signing and encryption in PI-ehp1

    Hi Experts,
    Our Business scenario is sap R/3 (sender)>rfc data to PI and to webservice(receiver) using rfc and soap adapters
    The communication channels are secured by snc/ssl.
    Now the issue is PI have to send digitally sign and encrypt xml messages to receiver and I got no clue how to do this.
    Experts please advise.
    We have to Digitally sign and encrypt xml messages in PI
    1)can we use SAML or Ssfdata xml..if so how to use them,can you send me some documents with screen shots so that i can configure the same in PI
    We used adepative tool but it does not support Dsigning
    2)Please advise the correct procedure
    3)how to develop a adapter user module and how to call it for testing purpose...please advise
    O/s:windows
    PI EHP1 7.1
    DB:oracle
    PLEASE HELP
    Thanking you
    Pooja

    Hi Experts,
    Please Advise for my above querys
    1)I tried to develop a EJB project and generate EAR file and depoly it in J2ee server and create adapter modules to call It..however I tried to use a document provided my sdn http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/c0b39e65-981e-2b10-1c9c-fc3f8e6747fa?quicklink=index&overridelayout=true................however I am unable to see the options provided ,unable to create EAR project and unable to see deploy option,please can you share a correct document irrespective of nwds SP level
    2)Apart from giving JNDI name in module tab,what else should be mentioned for a small test message request/response
    3)How to call the adapter for testing purpose apart from monitoring audit logs
    Please Advise Experts
    Thanking you
    Pooja

  • Looking for "PDF Public-Key Digital Signature and Encryption Specification"

    Hi,
    i am looking for the following ("old") document:
    PDF Public-Key Digital Signature and Encryption Specification
    Originally i could be found here:
    http://partners.adobe.com/asn/developer/acrosdk/DOCS/ppk_pdfspec.pdf
    But not anymore. Does somebody of you still have it? Adobe today just offers the latest documents but i specifically need that older version.
    Or is there an archive i don't know of?
    Thanks for your help,
    ToM

    You can read the PDF 1.5 specification OR even ISO 32000-1 itself for that information. Each feature is "tagged" with the specific version in which it was introduced.
    Digital Signatures were first introduced in Acrobat 4 (PDF 1.3) and have seen various improvements which each version since.

  • Can't digitally sign and encrypt email any longer.

    I used to sign and encrypt my emails digitally and then send them to people. I had two email certificates from Comodo, and it's been a while they're expired. so I renewed my certificates and deleted the old ones from my keychain, then downloaded and added the new ones. The trouble is I no longer get the digitally sign the message and encrypt the message button when I compose a new email. What could be the problem? how can I fix this?

    I am now having the same problem.  Have you seen a resolution yet?

  • Digitally Signing and Encrypting Email

    Hi,
    I have an iPhone 3GS and I cannot find any setting or application that allows me to import a root certificate onto the phone to digitally sign or encrypt outgoing email.
    Does iPhone support this?

    I installed my digital certs by just emailing them to myself then clicking the attachment. Additionally, you can use the new Enterprise Configuration utility to push these out.
    I however, have not been able to figure out how to digitally sign or encrypt outgoing email. Looks like Apple and the iPhone still has a way to go with Enterprise level features.

  • Digital Camera and Encryption

    Hi,
    We are using ESM 4.1. I have a policy for most staff that has Storage Removable Storage set to Read-Only (Data Encryption off) and another policy for management with Allow All Access for Removable Storage and Data Encryption on. This seems to be working very well...... however
    I have just had a request a from manager who wants to take pictures from a digital camera and download them to her computer. This is usually done by staff so read-only setting is fine. However as a manager with Data Encrypion set to on, ESM wants to encypt the camera which isn't going to work. Is there a way around this?

    Originally Posted by rbannerman
    Hi,
    We are using ESM 4.1. I have a policy for most staff that has Storage Removable Storage set to Read-Only (Data Encryption off) and another policy for management with Allow All Access for Removable Storage and Data Encryption on. This seems to be working very well...... however
    I have just had a request a from manager who wants to take pictures from a digital camera and download them to her computer. This is usually done by staff so read-only setting is fine. However as a manager with Data Encrypion set to on, ESM wants to encypt the camera which isn't going to work. Is there a way around this?
    Unfortunately the RSD encryption encrypts ALL storage devices when it is turned on. Product management is looking into adding a feature enhancement to provide greater control of what devices get encrypted but its not a current feature.

  • Extra header lines appearing in payload after singning and encrypting in Mail Receiver adapter PI 7.31

    Hi,
    We have a mail receiver adapter which is sending out a edi payload as attachment to the external receiver.
    When we send the normal .edi file it is ok.
    But when we sign and encrypt the payload and send it out, the external customer receiver decrypts and validates the message successfully but when their application tries to read the edi payload it finds the extra header lines as below :
      content-id:
    <[email protected]>
    Content-Disposition: attachment; filename=xxxxxxxx.edi Content-Type:
    application/xml
    At their end, their application (DataPower) expects the first three characters of the payload
    (decrypted payload) to be either UNA or UNB.This is how it validates whether the incoming message is an EDI message.
    But it encounters the extra MIME headers in the payload.
    Therefore it gets rejected by DataPower which thinks the content is an
    unknown message type.
    How to suppress the header lines appearing in the payload(after decryption and validation).
    Thanks,
    Guest

    hi,
    try content-type as "text/xml"

  • Handling digitally signed and encrypted emails

    Hi all,
    Is it possible to handle digitally signed emails with LiveCycle ES?
    And what about encrypted emails?
    Sincerely
    Kim Christensen

    LiveCycle does not handle signed or encrypted emails out of the box.
    You could develop a component to do this, or you could get someone to develop it for you.
    Email us at info-at-avoka.com if you'd like to discuss further.
    Howard
    http://www.avoka.com

  • Digital Signatures and Email Encryption on iPhone

    One of our clients has implemented a policy whereby all email communications with vendors must be digitally signed and encrypted. I know SSL allows the iPhone to create an encrypted connection to the email server. However, is there a way to actually digitally sign and encrypt an email sent via the iPhone...or to receive a digitally signed or encrypted email on the iPhone?

    Maybe there is a separate email client app in the App Store that supports PGP or S/MIME (the built-in email doesn't).

  • Digitally Signed and/or Encrypted Emails -- Can't Scan or Search

    I work in an environment where we enforce digital signatures and encryption on emails when certain conditions exist in the body of the email (e.g. hyperlinks, attachments, etc.).  What we've found, over the years, is that Exchange 2010 doesn't appear
    to be able to read the body or attachments on emails that are signed or encrypted.  We've found this because Transport rules consitently fail against these emails and Search-Mailbox fails to return results against test emails that have been digtially
    signed/encrypted using Body or Attachment keywords as criteria.
    Has anyone else run into this, can explain this, or know if there is a workaround/hotfix?  I heard from someone that Exchange 2013 fixes this issue but need a resolution for 2010.  Any assistance would be greatly appreciated.

    No you're right.  The customer keeps coupling the two because of their adjacency in Outlook and I repeated it because I've been hearing it all day.  The limitation of encryption is well understood but digitally signed emails are only plain-text
    with added s/mime data.  However, this latter case still seems to baffle Exchange 2010 -- Transport rules don't act upon rules based on body-content and attachments and Search-Mailbox will not report users' mailboxes as having mail that's searched for
    if it's digitally signed.

  • Digital Signatures and Workshop Papers

    Guys,
    Also posted [here|http://www.sapfans.com/forums/viewtopic.php?f=7&t=317491]
    Has anyone used digital signatures in PM workshop papers?
    If so, how do we load the digital signatures, and what code is used to import them into the workshop papers
    Thanks in advance
    PeteA

    Hi Amber,
    The work is based on the finalization and imminent publication of the
    wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
    our outstanding support organization, reference CR134931, for details.
    Regards,
    Bruce
    Amber Osterman wrote:
    >
    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    NET and Workshop using digital signatures and encryption.

  • Unable to digitally sign or encrypt messages in Mail

    I recently switched from a PC to a Mac and I have been unable to digitally sign or encrypt any of my e-mails. I'm currently running version 3.3 (926.1/926) for Mail and I made sure that my .cer security certificate is located in Keychain Access as well as certificates for my contacts. My certificate is valid because it has the green checkmark next to it.
    I know what the *digitally sign* and encryption buttons should look like and where they should be located when composing e-mails, but they are just not there for me. Does anyone have any advice on how to fix this. Does it matter which folder the .cer security certificates should be located in for Keychain Access? Or is there a specific option I need to enable within Mail to be able to see those buttons?
    I know that Mail is recognizing security certificates for e-mails that are being sent to me because it is showing the starburst/checkmark icon next to those e-mail addresses, and my Address Book is showing that same icon next to those e-mail addresses for my contacts.

    I finally have a solution to this problem. I had been trying to use a .cer security certificate issued by Comodo, it had worked just fine on Windows but my Mac didn't seem to like it. I also tried creating my own certificate through OSX, but even after I created it I still couldn't see the buttons.
    I had someone direct me to this webpage which ultimately helped me fix the problem:
    http://allforces.com/2007/03/02/email-security/
    I ended up using Thawte to issue me another security certificate (this time it was an x.509 file), the security certificate automatically opened in Keychain Access and downloaded to the Certificates and My Certificates folder. Once I shutdown Mail and restarted it I had the buttons for both encryption and digitally signed. Of course the encryption button is still greyed out because it is a new certificate and I need to make sure my Address Book contacts have a copy of it before I can encrypt.
    Message was edited by: Matthew Little

Maybe you are looking for