What Encryption Scheme, Padding Scheme and Block cipher modes of operation are used in partnership federation in Single Sign-On ?

Document ID : KB000045188
Last Modified Date : 14/02/2018
Show Technical Document Details

Question:

If the assertion is made to encrypt by partnership creation as below. 
- Block algorithm : 3DES 
- Key algorithm : RSA-V15 
In this case, what is used in Padding Scheme, Block cipher modes of operation, etc. to encrypt in SiteMinder? 
Padding Scheme :P KCS#1, PKCS#5, PKCS#12, etc. 
Block cipher modes of operation : ECB, CBC, etc. 

 

Answer: 

-XML Encryption is to be used in the specification of SAML2.0 used in a partnership federation. 
-Since Encryption Scheme, Key Algorithm, Padding Scheme, etc. are prescribed by the specification of XML Encryption, the algorithms can be selected in CA SSO according to the demand of the specification.

 

Additional Information:

-XML Encryption

https://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html