Return-Path: 
 <issues-return-12106-apmail-camel-issues-archive=camel.apache.org@camel.apache.org>
X-Original-To: apmail-camel-issues-archive@minotaur.apache.org
Delivered-To: apmail-camel-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 27D8C10DF0
	for <apmail-camel-issues-archive@minotaur.apache.org>;
 Fri, 16 Aug 2013 06:05:04 +0000 (UTC)
Received: (qmail 81266 invoked by uid 500); 16 Aug 2013 06:04:59 -0000
Delivered-To: apmail-camel-issues-archive@camel.apache.org
Received: (qmail 81212 invoked by uid 500); 16 Aug 2013 06:04:51 -0000
Mailing-List: contact issues-help@camel.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@camel.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@camel.apache.org>
List-Post: <mailto:issues@camel.apache.org>
List-Id: <issues.camel.apache.org>
Reply-To: dev@camel.apache.org
Delivered-To: mailing list issues@camel.apache.org
Received: (qmail 81174 invoked by uid 99); 16 Aug 2013 06:04:47 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 16 Aug 2013 06:04:47 +0000
Date: Fri, 16 Aug 2013 06:04:47 +0000 (UTC)
From: "Claus Ibsen (JIRA)" <jira@apache.org>
To: issues@camel.apache.org
Message-ID: <JIRA.12663855.1376576296009.78780.1376633087852@arcas>
In-Reply-To: <JIRA.12663855.1376576296009@arcas>
References: <JIRA.12663855.1376576296009@arcas>
Subject: [jira] [Commented] (CAMEL-6640) Migrate XML Security key cipher
 algorithm away from RSA v1.5
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/CAMEL-6640?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13741957#comment-13741957 ] 

Claus Ibsen commented on CAMEL-6640:
------------------------------------

Thanks Colm for the patch.

Do you mind updating the docs with this change at:
http://camel.apache.org/xmlsecurity-dataformat.html

And possible also add a little note to the release notes at _changes that may affect end users_:
http://camel.apache.org/camel-2120-release.html
                
> Migrate XML Security key cipher algorithm away from RSA v1.5
> ------------------------------------------------------------
>
>                 Key: CAMEL-6640
>                 URL: https://issues.apache.org/jira/browse/CAMEL-6640
>             Project: Camel
>          Issue Type: Improvement
>            Reporter: Colm O hEigeartaigh
>            Priority: Minor
>             Fix For: 2.12.0
>
>         Attachments: camel-6640.patch
>
>
> Currently, the XML Security component uses RSA v1.5 as the default Key Transport algorithm. As there are a number of attacks on this algorithm, it is better to use the RSA OAEP algorithm instead.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira