Oracle Liberty SDK 11-19
method, for version 1.1, before making any calls to the Oracle SAML Toolkit API for SAML 1.1.
11.3.2.2.5 The oracle.security.xmlsec.saml.SAMLURI Interface
The oracle.security.xmlsec.saml.SAMLURI interface defines URI string constants for algorithms, namespaces, and objects. The following naming convention
is used:
■
Action Namespace URIs defined in the SAML 1.1 specifications begin with action_
■
Authentication Method Namespace URIs defined in the SAML 1.1 specifications begin with authentication_method_
■
Confirmation Method Namespace URIs defined in the SAML 1.1 specifications begin with confirmation_method_
■
Namespace URIs begin with ns_
11.3.2.2.6 The oracle.security.xmlsec.saml.SAMLMessage Class
oracle.security.xmlsec.saml.SAMLMessage is the base class for all the SAML and SAML extension messages that may be signed and contain an XML-DSIG
structure.
11.3.3 The Oracle Liberty SDK 1.2 API Reference
The Oracle Liberty SDK version 1.2 API Reference Javadoc is available at: Oracle Fusion Middleware Liberty 1.2 Java API Reference for Oracle Security Developer Tools
11.3.4 Example Programs
For example programs using the Oracle Security Developer Tools, see the Oracle Technology Network Web Site at
http:www.oracle.comtechnologysample_codeproductsid_ mgmtindex.html
.
11-20 Oracle Fusion Middleware Reference for Oracle Security Developer Tools
12
Oracle XKMS 12-1
12
Oracle XKMS
XKMS XML Key Management Specification is a W3C specification for public key management. It provides a convenient way to handle public key infrastructures by
enabling developers to write XML transactions for digital signature processing.
This chapter contains these topics:
■
Oracle XKMS Features and Benefits
■
Setting Up Your Oracle XKMS Environment
■
Core Classes and Interfaces
■
The Oracle XKMS Java API Reference
■
Example Programs
12.1 Oracle XKMS Features and Benefits
Oracle XKMS is a pure Java solution which consists of a toolkit for locating keys and verifying user identities across businesses and applications. It supports the secure,
trusted messaging required for web services, and provides a way to sidestep some of the costs and complexity associated with PKI.
Oracle XKMS provides the following features:
■
Simplified access to PKI functionality - by implementing the W3C XKMS Standard, Oracle XKMS combines the simplicity of XML with the robustness of
PKI. With this toolkit, developers can easily deploy robust application functionality by deploying secure, lightweight client software.
■
Supports complete keycertificate life cycle - Oracle XKMS helps enterprise applications locate, retrieve, and validate signature and encryption keys using
lightweight Web Services infrastructure.
■
Secures XKMS messages using XML Signatures - requests and responses can be digitally signed using Oracle XML toolkit.
■
100 Java with no native methods
■
Works with JAXP 1.1 compliant XML parsers
12.1.1 Oracle XKMS Packages
The Oracle XKMS library contains the following packages: