Stadiumite Posted April 23, 2007 Share Posted April 23, 2007 I've been working on passing some encrypted data in XML messages. There's a w3c recommendation that defines an EncryptedData type. Within that type, you can pass the value you want to encrypt as "CipherData" <EncryptedData> <xenc:CipherData> <xenc:CipherValue></xenc:CipherValue> </xenc:CipherData> <xenc:EncryptionProperties> <xenc:EncryptionProperty> <!--IV?????--> <ds:KeyName></ds:KeyName> </xenc:EncryptionProperty> </xenc:EncryptionProperties> </EncryptedData>The type has lots of elements defined within it, for representing details about the encryption that you may need to pass tothe consumer for decryption.If I'm using an encryption method that requires the encryptor and the decryptor to use the same Initialization Vector (IV), I would think that I should be able to represent that IV somewhere in the EncryptedData block. But I haven't been able to figure out exactly how. It's not a key, so I don't think it belongs in ds:keyInfo. None of the other elements seems to be an exact fit either.If I'm going to bother to follow this recommendation, I want to do it correctly. Nothing I can find tells me how to do this. Is the IV somehow embedded in CipherValue? Link to comment Share on other sites More sharing options...
Stadiumite Posted April 23, 2007 Author Share Posted April 23, 2007 P.S. This is the recommendation that I mentioned http://www.w3.org/TR/xmlenc-core/ Link to comment Share on other sites More sharing options...
boen_robot Posted April 24, 2007 Share Posted April 24, 2007 Well, when you first search the spec for "Initialization Vector", you find this sentence: For user specified block encryption algorithms, the IV, if any, could be specified as being with the cipher data, as an algorithm content element, or elsewhere.I suppose this implies that you are free to specify the IV anywhere, though you're advised to use it as part of the cipher data or as an algorith content element. Link to comment Share on other sites More sharing options...
Stadiumite Posted April 24, 2007 Author Share Posted April 24, 2007 Well, when you first search the spec for "Initialization Vector", you find this sentence:I suppose this implies that you are free to specify the IV anywhere, though you're advised to use it as part of the cipher data or as an algorith content element.Thanks for the hint. I must have looked at that spec 100 times and I didn't pick up on that. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.