Tag Archives: ws-*

Using NSS for FIPS 140-2 compliant message security in CXF

If you have ever supported a client in the US Government, civil or otherwise, you have probably heard of the FIPS 140-2 compliance requirements for cryptographic operations.  If you haven’t, stick around a little longer and it will eventually ruin … Continue reading

Posted in Uncategorized | Tagged , , , , | 6 Comments

Signing WS-Addressing headers in Apache CXF

As WS-Addressing (WS-A) headers can drastically affect the behavior of a Web service, securing these headers is just as important as securing the message payload.  In many cases, these headers and other parts of the message will be integrity constrained … Continue reading

Posted in Uncategorized | Tagged , , | 5 Comments