35 <!-- c14n 1.1 with comments --> 36 <TransformAlgorithm URI="http://www.w3.org/2006/12/xml-c14n11#WithComments" 37 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14N11_WithComments" /> 38 <!-- exclusive c14n omitting comments --> 39 <TransformAlgorithm URI="http://www.w3.org/2001/10/xml-exc-c14n#" 40 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14NExclusive" /> 41 <!-- exclusive c14n with comments --> 42 <TransformAlgorithm URI="http://www.w3.org/2001/10/xml-exc-c14n#WithComments" 43 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14NExclusiveWithComments" /> 44 45 <!-- XPath transform --> 46 <TransformAlgorithm URI="http://www.w3.org/TR/1999/REC-xpath-19991116" 47 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXPath" /> 48 <!-- enveloped signature --> 49 <TransformAlgorithm URI="http://www.w3.org/2000/09/xmldsig#enveloped-signature" 50 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformEnvelopedSignature" /> 51 <!-- XSLT --> 52 <TransformAlgorithm URI="http://www.w3.org/TR/1999/REC-xslt-19991116" 53 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXSLT" /> 54 <!-- XPath version 2 --> 55 <TransformAlgorithm URI="http://www.w3.org/2002/04/xmldsig-filter2" 56 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXPath2Filter" /> 57 <!-- XPath version 2b --> 58 <TransformAlgorithm URI="http://www.w3.org/2002/06/xmldsig-filter2" 59 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXPath2Filter" /> 60 </TransformAlgorithms> 61 <SignatureAlgorithms> 62 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#dsa-sha1" 63 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureDSA" /> 64 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1" 65 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA1" /> 66 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#hmac-sha1" 67 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA1" /> 68 69 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-md5" 70 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSAMD5" /> 71 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160" 72 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSARIPEMD160" /> 73 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" 74 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA256" /> 75 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" 76 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA384" /> 77 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" 78 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA512" /> 79 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" 80 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureECDSA$SignatureECDSASHA1" /> 81 82 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-md5" 83 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacMD5" /> 84 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160" 85 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacRIPEMD160" /> 86 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" 87 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA256" /> 88 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384" 89 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA384" /> 90 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512" 91 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA512" /> 92 </SignatureAlgorithms> 93 <JCEAlgorithmMappings> 94 <Algorithms> 95 <!-- MessageDigest Algorithms --> 96 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#md5" 97 Description="MD5 message digest from RFC 1321" 98 AlgorithmClass="MessageDigest" 99 RequirementLevel="NOT RECOMMENDED" 100 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 101 JCEName="MD5"/> 102 103 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#ripemd160" 104 Description="RIPEMD-160 message digest" 105 AlgorithmClass="MessageDigest" 106 RequirementLevel="OPTIONAL" 107 JCEName="RIPEMD160"/> 108 109 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#sha1" 110 Description="SHA-1 message digest" 111 AlgorithmClass="MessageDigest" 112 RequirementLevel="REQUIRED" 113 JCEName="SHA-1"/> 114 115 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#sha256" 116 Description="SHA-1 message digest with 256 bit" 117 AlgorithmClass="MessageDigest" 118 RequirementLevel="RECOMMENDED" 119 JCEName="SHA-256"/> 120 121 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#sha384" 122 Description="SHA message digest with 384 bit" 123 AlgorithmClass="MessageDigest" 124 RequirementLevel="OPTIONAL" 125 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 126 JCEName="SHA-384"/> 127 128 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#sha512" 129 Description="SHA-1 message digest with 512 bit" 130 AlgorithmClass="MessageDigest" 131 RequirementLevel="OPTIONAL" 132 JCEName="SHA-512"/> 133 134 <!-- Signature Algorithms --> 135 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#dsa-sha1" 136 Description="Digital Signature Algorithm with SHA-1 message digest" 137 AlgorithmClass="Signature" 138 RequirementLevel="REQUIRED" 139 JCEName="SHA1withDSA"/> 140 141 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-md5" 142 Description="RSA Signature with MD5 message digest" 143 AlgorithmClass="Signature" 144 RequirementLevel="NOT RECOMMENDED" 145 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 146 JCEName="MD5withRSA"/> 147 148 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160" 149 Description="RSA Signature with RIPEMD-160 message digest" 150 AlgorithmClass="Signature" 151 RequirementLevel="OPTIONAL" 152 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 153 JCEName="RIPEMD160withRSA"/> 154 155 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1" 156 Description="RSA Signature with SHA-1 message digest" 157 AlgorithmClass="Signature" 158 RequirementLevel="RECOMMENDED" 159 JCEName="SHA1withRSA"/> 160 161 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" 162 Description="RSA Signature with SHA-256 message digest" 163 AlgorithmClass="Signature" 164 RequirementLevel="OPTIONAL" 165 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 166 JCEName="SHA256withRSA"/> 167 168 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" 169 Description="RSA Signature with SHA-384 message digest" 170 AlgorithmClass="Signature" 171 RequirementLevel="OPTIONAL" 172 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 173 JCEName="SHA384withRSA"/> 174 175 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" 176 Description="RSA Signature with SHA-512 message digest" 177 AlgorithmClass="Signature" 178 RequirementLevel="OPTIONAL" 179 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 180 JCEName="SHA512withRSA"/> 181 182 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" 183 Description="ECDSA Signature with SHA-1 message digest" 184 AlgorithmClass="Signature" 185 RequirementLevel="OPTIONAL" 186 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 187 JCEName="ECDSAwithSHA1"/> 188 189 <!-- MAC Algorithms --> 190 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-md5" 191 Description="Message Authentication code using MD5" 192 AlgorithmClass="Mac" 193 RequirementLevel="NOT RECOMMENDED" 194 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 195 JCEName="HmacMD5"/> 196 197 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160" 198 Description="Message Authentication code using RIPEMD-160" 199 AlgorithmClass="Mac" 200 RequirementLevel="OPTIONAL" 201 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 202 JCEName="HMACRIPEMD160"/> 203 204 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#hmac-sha1" 205 Description="Message Authentication code using SHA1" 206 AlgorithmClass="Mac" 207 RequirementLevel="REQUIRED" 208 JCEName="HmacSHA1"/> 209 210 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" 211 Description="Message Authentication code using SHA-256" 212 AlgorithmClass="Mac" 213 RequirementLevel="OPTIONAL" 214 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 215 JCEName="HmacSHA256"/> 216 217 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384" 218 Description="Message Authentication code using SHA-384" 219 AlgorithmClass="Mac" 220 RequirementLevel="OPTIONAL" 221 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 222 JCEName="HmacSHA384"/> 223 224 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512" 225 Description="Message Authentication code using SHA-512" 226 AlgorithmClass="Mac" 227 RequirementLevel="OPTIONAL" 228 SpecificationURL="http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt" 229 JCEName="HmacSHA512"/> 230 231 <!-- Block encryption Algorithms --> 232 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" 233 Description="Block encryption using Triple-DES" 234 AlgorithmClass="BlockEncryption" 235 RequirementLevel="REQUIRED" 236 KeyLength="192" 237 RequiredKey="DESede" 238 JCEName="DESede/CBC/ISO10126Padding"/> 239 240 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes128-cbc" 241 Description="Block encryption using AES with a key length of 128 bit" 242 AlgorithmClass="BlockEncryption" 243 RequirementLevel="REQUIRED" 244 KeyLength="128" 245 RequiredKey="AES" 246 JCEName="AES/CBC/ISO10126Padding"/> 247 248 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes192-cbc" 249 Description="Block encryption using AES with a key length of 192 bit" 250 AlgorithmClass="BlockEncryption" 251 RequirementLevel="OPTIONAL" 252 KeyLength="192" 253 RequiredKey="AES" 254 JCEName="AES/CBC/ISO10126Padding"/> 255 256 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes256-cbc" 257 Description="Block encryption using AES with a key length of 256 bit" 258 AlgorithmClass="BlockEncryption" 259 RequirementLevel="REQUIRED" 260 KeyLength="256" 261 RequiredKey="AES" 262 JCEName="AES/CBC/ISO10126Padding"/> 263 264 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#rsa-1_5" 265 Description="Key Transport RSA-v1.5" 266 AlgorithmClass="KeyTransport" 267 RequirementLevel="REQUIRED" 268 RequiredKey="RSA" 269 JCEName="RSA/ECB/PKCS1Padding"/> 270 271 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" 272 Description="Key Transport RSA-OAEP" 273 AlgorithmClass="KeyTransport" 274 RequirementLevel="REQUIRED" 275 RequiredKey="RSA" 276 JCEName="RSA/ECB/OAEPWithSHA1AndMGF1Padding"/> 277 278 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#dh" 279 Description="Key Agreement Diffie-Hellman" 280 AlgorithmClass="KeyAgreement" 281 RequirementLevel="OPTIONAL"/> 282 283 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-tripledes" 284 Description="Symmetric Key Wrap using Triple DES" 285 AlgorithmClass="SymmetricKeyWrap" 286 RequirementLevel="REQUIRED" 287 KeyLength="192" 288 RequiredKey="DESede" 289 JCEName="DESedeWrap"/> 290 291 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes128" 292 Description="Symmetric Key Wrap using AES with a key length of 128 bit" 293 AlgorithmClass="SymmetricKeyWrap" 294 RequirementLevel="REQUIRED" 295 KeyLength="128" 296 RequiredKey="AES" 297 JCEName="AESWrap"/> 298 299 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes192" 300 Description="Symmetric Key Wrap using AES with a key length of 192 bit" 301 AlgorithmClass="SymmetricKeyWrap" 302 RequirementLevel="OPTIONAL" 303 KeyLength="192" 304 RequiredKey="AES" 305 JCEName="AESWrap"/> 306 307 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes256" 308 Description="Symmetric Key Wrap using AES with a key length of 256 bit" 309 AlgorithmClass="SymmetricKeyWrap" 310 RequirementLevel="REQUIRED" 311 KeyLength="256" 312 RequiredKey="AES" 313 JCEName="AESWrap"/> 314 315 </Algorithms> 316 </JCEAlgorithmMappings> 317 <ResourceBundles defaultLanguageCode="en" defaultCountryCode="US"> 318 <ResourceBundle LanguageCode="en" 319 CountryCode="US" 320 LOCATION="com.sun.org.apache.xml.internal.security/resource/xmlsecurity_en.properties" /> 321 <ResourceBundle LanguageCode="de" 322 CountryCode="DE" 323 LOCATION="com.sun.org.apache.xml.internal.security/resource/xmlsecurity_de.properties" /> 324 </ResourceBundles> 325 <ResourceResolvers> 326 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverDirectHTTP" 327 DESCRIPTION="A simple resolver for requests to HTTP space" /> 328 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverLocalFilesystem" 329 DESCRIPTION="A simple resolver for requests to the local file system" /> 330 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverFragment" 331 DESCRIPTION="A simple resolver for requests of same-document URIs" /> 332 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverXPointer" 333 DESCRIPTION="A simple resolver for requests of XPointer fragents" /> 334 </ResourceResolvers> 335 <!-- <defaultLocale languageCode="en" countryCode="US" /> --> 336 <KeyInfo> 337 <ContentHandler LOCALNAME="KeyName" 338 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 339 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.KeyName" /> 340 <ContentHandler LOCALNAME="KeyValue" 341 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 342 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.KeyValue" /> 343 <ContentHandler LOCALNAME="RetrievalMethod" 344 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 345 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.RetrievalMethod" /> 346 <ContentHandler LOCALNAME="X509Data" 347 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 348 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.X509Data" /> 349 <ContentHandler LOCALNAME="PGPData" 350 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 351 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.PGPData" /> 352 <ContentHandler LOCALNAME="SPKIData" 353 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 354 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.SPKIData" /> 355 <ContentHandler LOCALNAME="MgmtData" 356 NAMESPACE="http://www.w3.org/2000/09/xmldsig#" 357 JAVACLASS="com.sun.org.apache.xml.internal.security.keys.content.MgmtData" /> 358 </KeyInfo> 359 <KeyResolver> 360 <!-- This section contains a list of KeyResolvers that are available in 361 every KeyInfo object --> 362 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.RSAKeyValueResolver" 363 DESCRIPTION="Can extract RSA public keys" /> 364 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.DSAKeyValueResolver" 365 DESCRIPTION="Can extract DSA public keys" /> 366 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509CertificateResolver" 367 DESCRIPTION="Can extract public keys from X509 certificates" /> 368 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509SKIResolver" 369 DESCRIPTION="Uses an X509v3 SubjectKeyIdentifier extension to retrieve a certificate from the storages" /> 370 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.RetrievalMethodResolver" 371 DESCRIPTION="Resolves keys and certificates using ResourceResolvers" /> 372 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509SubjectNameResolver" 373 DESCRIPTION="Uses an X509 SubjectName to retrieve a certificate from the storages" /> 374 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509IssuerSerialResolver" 375 DESCRIPTION="Uses an X509 IssuerName and IssuerSerial to retrieve a certificate from the storages" /> 376 </KeyResolver> 377 378 <PrefixMappings> | 35 <!-- c14n 1.1 with comments --> 36 <TransformAlgorithm URI="http://www.w3.org/2006/12/xml-c14n11#WithComments" 37 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14N11_WithComments" /> 38 <!-- exclusive c14n omitting comments --> 39 <TransformAlgorithm URI="http://www.w3.org/2001/10/xml-exc-c14n#" 40 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14NExclusive" /> 41 <!-- exclusive c14n with comments --> 42 <TransformAlgorithm URI="http://www.w3.org/2001/10/xml-exc-c14n#WithComments" 43 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformC14NExclusiveWithComments" /> 44 45 <!-- XPath transform --> 46 <TransformAlgorithm URI="http://www.w3.org/TR/1999/REC-xpath-19991116" 47 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXPath" /> 48 <!-- enveloped signature --> 49 <TransformAlgorithm URI="http://www.w3.org/2000/09/xmldsig#enveloped-signature" 50 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformEnvelopedSignature" /> 51 <!-- XSLT --> 52 <TransformAlgorithm URI="http://www.w3.org/TR/1999/REC-xslt-19991116" 53 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXSLT" /> 54 <!-- XPath version 2 --> 55 <TransformAlgorithm URI="http://www.w3.org/2002/06/xmldsig-filter2" 56 JAVACLASS="com.sun.org.apache.xml.internal.security.transforms.implementations.TransformXPath2Filter" /> 57 </TransformAlgorithms> 58 <SignatureAlgorithms> 59 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#dsa-sha1" 60 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureDSA" /> 61 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1" 62 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA1" /> 63 <SignatureAlgorithm URI="http://www.w3.org/2000/09/xmldsig#hmac-sha1" 64 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA1" /> 65 66 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-md5" 67 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSAMD5" /> 68 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160" 69 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSARIPEMD160" /> 70 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" 71 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA256" /> 72 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" 73 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA384" /> 74 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" 75 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureBaseRSA$SignatureRSASHA512" /> 76 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" 77 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureECDSA$SignatureECDSASHA1" /> 78 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" 79 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureECDSA$SignatureECDSASHA256" /> 80 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" 81 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureECDSA$SignatureECDSASHA384" /> 82 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" 83 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.SignatureECDSA$SignatureECDSASHA512" /> 84 85 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-md5" 86 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacMD5" /> 87 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160" 88 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacRIPEMD160" /> 89 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" 90 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA256" /> 91 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384" 92 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA384" /> 93 <SignatureAlgorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512" 94 JAVACLASS="com.sun.org.apache.xml.internal.security.algorithms.implementations.IntegrityHmac$IntegrityHmacSHA512" /> 95 </SignatureAlgorithms> 96 <JCEAlgorithmMappings> 97 <Algorithms> 98 <!-- MessageDigest Algorithms --> 99 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#md5" 100 Description="MD5 message digest from RFC 1321" 101 AlgorithmClass="MessageDigest" 102 RequirementLevel="NOT RECOMMENDED" 103 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 104 JCEName="MD5"/> 105 106 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#ripemd160" 107 Description="RIPEMD-160 message digest" 108 AlgorithmClass="MessageDigest" 109 RequirementLevel="OPTIONAL" 110 JCEName="RIPEMD160"/> 111 112 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#sha1" 113 Description="SHA-1 message digest" 114 AlgorithmClass="MessageDigest" 115 RequirementLevel="REQUIRED" 116 JCEName="SHA-1"/> 117 118 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#sha256" 119 Description="SHA-1 message digest with 256 bit" 120 AlgorithmClass="MessageDigest" 121 RequirementLevel="RECOMMENDED" 122 JCEName="SHA-256"/> 123 124 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#sha384" 125 Description="SHA message digest with 384 bit" 126 AlgorithmClass="MessageDigest" 127 RequirementLevel="OPTIONAL" 128 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 129 JCEName="SHA-384"/> 130 131 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#sha512" 132 Description="SHA-1 message digest with 512 bit" 133 AlgorithmClass="MessageDigest" 134 RequirementLevel="OPTIONAL" 135 JCEName="SHA-512"/> 136 137 <!-- Signature Algorithms --> 138 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#dsa-sha1" 139 Description="Digital Signature Algorithm with SHA-1 message digest" 140 AlgorithmClass="Signature" 141 RequirementLevel="REQUIRED" 142 JCEName="SHA1withDSA"/> 143 144 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-md5" 145 Description="RSA Signature with MD5 message digest" 146 AlgorithmClass="Signature" 147 RequirementLevel="NOT RECOMMENDED" 148 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 149 JCEName="MD5withRSA"/> 150 151 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160" 152 Description="RSA Signature with RIPEMD-160 message digest" 153 AlgorithmClass="Signature" 154 RequirementLevel="OPTIONAL" 155 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 156 JCEName="RIPEMD160withRSA"/> 157 158 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1" 159 Description="RSA Signature with SHA-1 message digest" 160 AlgorithmClass="Signature" 161 RequirementLevel="RECOMMENDED" 162 JCEName="SHA1withRSA"/> 163 164 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" 165 Description="RSA Signature with SHA-256 message digest" 166 AlgorithmClass="Signature" 167 RequirementLevel="OPTIONAL" 168 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 169 JCEName="SHA256withRSA"/> 170 171 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" 172 Description="RSA Signature with SHA-384 message digest" 173 AlgorithmClass="Signature" 174 RequirementLevel="OPTIONAL" 175 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 176 JCEName="SHA384withRSA"/> 177 178 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" 179 Description="RSA Signature with SHA-512 message digest" 180 AlgorithmClass="Signature" 181 RequirementLevel="OPTIONAL" 182 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 183 JCEName="SHA512withRSA"/> 184 185 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" 186 Description="ECDSA Signature with SHA-1 message digest" 187 AlgorithmClass="Signature" 188 RequirementLevel="OPTIONAL" 189 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 190 JCEName="SHA1withECDSA"/> 191 192 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" 193 Description="ECDSA Signature with SHA-256 message digest" 194 AlgorithmClass="Signature" 195 RequirementLevel="OPTIONAL" 196 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 197 JCEName="SHA256withECDSA"/> 198 199 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" 200 Description="ECDSA Signature with SHA-384 message digest" 201 AlgorithmClass="Signature" 202 RequirementLevel="OPTIONAL" 203 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 204 JCEName="SHA384withECDSA"/> 205 206 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" 207 Description="ECDSA Signature with SHA-512 message digest" 208 AlgorithmClass="Signature" 209 RequirementLevel="OPTIONAL" 210 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 211 JCEName="SHA512withECDSA"/> 212 213 <!-- MAC Algorithms --> 214 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-md5" 215 Description="Message Authentication code using MD5" 216 AlgorithmClass="Mac" 217 RequirementLevel="NOT RECOMMENDED" 218 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 219 JCEName="HmacMD5"/> 220 221 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160" 222 Description="Message Authentication code using RIPEMD-160" 223 AlgorithmClass="Mac" 224 RequirementLevel="OPTIONAL" 225 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 226 JCEName="HMACRIPEMD160"/> 227 228 <Algorithm URI="http://www.w3.org/2000/09/xmldsig#hmac-sha1" 229 Description="Message Authentication code using SHA1" 230 AlgorithmClass="Mac" 231 RequirementLevel="REQUIRED" 232 JCEName="HmacSHA1"/> 233 234 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" 235 Description="Message Authentication code using SHA-256" 236 AlgorithmClass="Mac" 237 RequirementLevel="OPTIONAL" 238 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 239 JCEName="HmacSHA256"/> 240 241 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384" 242 Description="Message Authentication code using SHA-384" 243 AlgorithmClass="Mac" 244 RequirementLevel="OPTIONAL" 245 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 246 JCEName="HmacSHA384"/> 247 248 <Algorithm URI="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512" 249 Description="Message Authentication code using SHA-512" 250 AlgorithmClass="Mac" 251 RequirementLevel="OPTIONAL" 252 SpecificationURL="http://www.ietf.org/rfc/rfc4051.txt" 253 JCEName="HmacSHA512"/> 254 255 <!-- Block encryption Algorithms --> 256 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" 257 Description="Block encryption using Triple-DES" 258 AlgorithmClass="BlockEncryption" 259 RequirementLevel="REQUIRED" 260 KeyLength="192" 261 RequiredKey="DESede" 262 JCEName="DESede/CBC/ISO10126Padding"/> 263 264 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes128-cbc" 265 Description="Block encryption using AES with a key length of 128 bit" 266 AlgorithmClass="BlockEncryption" 267 RequirementLevel="REQUIRED" 268 KeyLength="128" 269 RequiredKey="AES" 270 JCEName="AES/CBC/ISO10126Padding"/> 271 272 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes192-cbc" 273 Description="Block encryption using AES with a key length of 192 bit" 274 AlgorithmClass="BlockEncryption" 275 RequirementLevel="OPTIONAL" 276 KeyLength="192" 277 RequiredKey="AES" 278 JCEName="AES/CBC/ISO10126Padding"/> 279 280 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#aes256-cbc" 281 Description="Block encryption using AES with a key length of 256 bit" 282 AlgorithmClass="BlockEncryption" 283 RequirementLevel="REQUIRED" 284 KeyLength="256" 285 RequiredKey="AES" 286 JCEName="AES/CBC/ISO10126Padding"/> 287 288 <Algorithm URI="http://www.w3.org/2009/xmlenc11#aes128-gcm" 289 Description="Block encryption using AES with a key length of 128 bit in GCM" 290 AlgorithmClass="BlockEncryption" 291 RequirementLevel="OPTIONAL" 292 KeyLength="128" 293 RequiredKey="AES" 294 JCEName="AES/GCM/NoPadding"/> 295 296 <Algorithm URI="http://www.w3.org/2009/xmlenc11#aes192-gcm" 297 Description="Block encryption using AES with a key length of 192 bit in GCM" 298 AlgorithmClass="BlockEncryption" 299 RequirementLevel="OPTIONAL" 300 KeyLength="192" 301 RequiredKey="AES" 302 JCEName="AES/GCM/NoPadding"/> 303 304 <Algorithm URI="http://www.w3.org/2009/xmlenc11#aes256-gcm" 305 Description="Block encryption using AES with a key length of 256 bit in GCM" 306 AlgorithmClass="BlockEncryption" 307 RequirementLevel="OPTIONAL" 308 KeyLength="256" 309 RequiredKey="AES" 310 JCEName="AES/GCM/NoPadding"/> 311 312 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#rsa-1_5" 313 Description="Key Transport RSA-v1.5" 314 AlgorithmClass="KeyTransport" 315 RequirementLevel="REQUIRED" 316 RequiredKey="RSA" 317 JCEName="RSA/ECB/PKCS1Padding"/> 318 319 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" 320 Description="Key Transport RSA-OAEP" 321 AlgorithmClass="KeyTransport" 322 RequirementLevel="REQUIRED" 323 RequiredKey="RSA" 324 JCEName="RSA/ECB/OAEPPadding"/> 325 326 <Algorithm URI="http://www.w3.org/2009/xmlenc11#rsa-oaep" 327 Description="Key Transport RSA-OAEP" 328 AlgorithmClass="KeyTransport" 329 RequirementLevel="OPTIONAL" 330 RequiredKey="RSA" 331 JCEName="RSA/ECB/OAEPPadding"/> 332 333 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#dh" 334 Description="Key Agreement Diffie-Hellman" 335 AlgorithmClass="KeyAgreement" 336 RequirementLevel="OPTIONAL"/> 337 338 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-tripledes" 339 Description="Symmetric Key Wrap using Triple DES" 340 AlgorithmClass="SymmetricKeyWrap" 341 RequirementLevel="REQUIRED" 342 KeyLength="192" 343 RequiredKey="DESede" 344 JCEName="DESedeWrap"/> 345 346 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes128" 347 Description="Symmetric Key Wrap using AES with a key length of 128 bit" 348 AlgorithmClass="SymmetricKeyWrap" 349 RequirementLevel="REQUIRED" 350 KeyLength="128" 351 RequiredKey="AES" 352 JCEName="AESWrap"/> 353 354 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes192" 355 Description="Symmetric Key Wrap using AES with a key length of 192 bit" 356 AlgorithmClass="SymmetricKeyWrap" 357 RequirementLevel="OPTIONAL" 358 KeyLength="192" 359 RequiredKey="AES" 360 JCEName="AESWrap"/> 361 362 <Algorithm URI="http://www.w3.org/2001/04/xmlenc#kw-aes256" 363 Description="Symmetric Key Wrap using AES with a key length of 256 bit" 364 AlgorithmClass="SymmetricKeyWrap" 365 RequirementLevel="REQUIRED" 366 KeyLength="256" 367 RequiredKey="AES" 368 JCEName="AESWrap"/> 369 370 </Algorithms> 371 </JCEAlgorithmMappings> 372 <ResourceBundles defaultLanguageCode="en" defaultCountryCode="US"/> 373 <ResourceResolvers> 374 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverDirectHTTP" 375 DESCRIPTION="A simple resolver for requests to HTTP space" /> 376 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverLocalFilesystem" 377 DESCRIPTION="A simple resolver for requests to the local file system" /> 378 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverFragment" 379 DESCRIPTION="A simple resolver for requests of same-document URIs" /> 380 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.utils.resolver.implementations.ResolverXPointer" 381 DESCRIPTION="A simple resolver for requests of XPointer fragments" /> 382 </ResourceResolvers> 383 <KeyResolver> 384 <!-- This section contains a list of KeyResolvers that are available in 385 every KeyInfo object --> 386 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.RSAKeyValueResolver" 387 DESCRIPTION="Can extract RSA public keys" /> 388 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.DSAKeyValueResolver" 389 DESCRIPTION="Can extract DSA public keys" /> 390 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509CertificateResolver" 391 DESCRIPTION="Can extract public keys from X509 certificates" /> 392 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509SKIResolver" 393 DESCRIPTION="Uses an X509v3 SubjectKeyIdentifier extension to retrieve a certificate from the storages" /> 394 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.RetrievalMethodResolver" 395 DESCRIPTION="Resolves keys and certificates using ResourceResolvers" /> 396 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509SubjectNameResolver" 397 DESCRIPTION="Uses an X509 SubjectName to retrieve a certificate from the storages" /> 398 <Resolver JAVACLASS="com.sun.org.apache.xml.internal.security.keys.keyresolver.implementations.X509IssuerSerialResolver" 399 DESCRIPTION="Uses an X509 IssuerName and IssuerSerial to retrieve a certificate from the storages" /> 400 </KeyResolver> 401 402 <PrefixMappings> |