Hi all,
I have a question: wss4j 1.5.4 implements a WS-I Basic Security Profile Version 1.0.
I see in the readme.txt file of wss4j 1.5.4 API that:
and in the WS-I Basic Security Profile Version 1.0 spec. (go to http://www.ws-i.org/Profiles/BasicSecurityProfile-1.0.html) there are reference to OASIS Standard 200401, but I don't know if wss4j (version 1.5.4) implements WS-I Basic Security Profile Version 1.0 spec?
Can anyone tell me if that is true?
pasquy pasquy wrote:I don't know if wss4j (version 1.5.4) implements WS-I Basic Security Profile Version 1.0 spec?
I strongly doubt it. While the standards implemented by WSS4J are certainly part of the Basic Security Profile, the profile itself is much broader. So additional measures would be necessary to achieve full profile compliance. Furthermore the profile wasn't approved until March 2007 which is three years after the standards mentioned by the WSS4J.
0
