Encryption Element for Outbound Messages
Inclusion of this element causes the facility to encrypt the outbound message body.
Token Reference Type
The token reference type attribute indicates how the encrypted certificate will be included in the message header.
Reference Type | Item Included in Header |
Direct | The token itself, as a sequence of base-64-encoded bytes |
IssuerAndSerial | The token’s X.509 Issuer and Serial Number |
SubjectKeyIdentifier | The token’s X.509 Subject Key Identifier |
Thumbprint | The token’s thumbprint |
Example
<Encryption
TokenReferenceType="Direct"/>
Encryption Algorithm
This setting specifies the algorithm to use for encrypting the message. The following table lists the available algorithms.
Algorithm Name | Algorithm ID |
tripledes | http://www.w3.org/2001/04/xmlenc#tripledes-cbc |
aes128 | http://www.w3.org/2001/04/xmlenc#aes128-cbc |
aes192 | http://www.w3.org/2001/04/xmlenc#aes192-cbc |
aes256 | http://www.w3.org/2001/04/xmlenc#aes256-cbc |
Example
<Encryption
EncryptionAlgorithm="aes256"/>
Key Wrapping Algorithm
This setting specifies the algorithm to use for encrypting keys passed in a message. The following table lists the available algorithms.
Algorithm Name | Algorithm ID |
rsa15 | http://www.w3.org/2001/04/xmlenc#rsa-1_5 |
rsaoaep | http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p |