Oracle Liberty SDK 11-19 method, for version 1.1, before making any calls to the Oracle SAML Toolkit API for SAML 1.1.

11.3.2.2.5 The oracle.security.xmlsec.saml.SAMLURI Interface

The oracle.security.xmlsec.saml.SAMLURI interface defines URI string constants for algorithms, namespaces, and objects. The following naming convention is used: ■ Action Namespace URIs defined in the SAML 1.1 specifications begin with action_ ■ Authentication Method Namespace URIs defined in the SAML 1.1 specifications begin with authentication_method_ ■ Confirmation Method Namespace URIs defined in the SAML 1.1 specifications begin with confirmation_method_ ■ Namespace URIs begin with ns_

11.3.2.2.6 The oracle.security.xmlsec.saml.SAMLMessage Class

oracle.security.xmlsec.saml.SAMLMessage is the base class for all the SAML and SAML extension messages that may be signed and contain an XML-DSIG structure.

11.3.3 The Oracle Liberty SDK 1.2 API Reference

The Oracle Liberty SDK version 1.2 API Reference Javadoc is available at: Oracle Fusion Middleware Liberty 1.2 Java API Reference for Oracle Security Developer Tools

11.3.4 Example Programs

For example programs using the Oracle Security Developer Tools, see the Oracle Technology Network Web Site at http:www.oracle.comtechnologysample_codeproductsid_ mgmtindex.html . 11-20 Oracle Fusion Middleware Reference for Oracle Security Developer Tools 12 Oracle XKMS 12-1 12 Oracle XKMS XKMS XML Key Management Specification is a W3C specification for public key management. It provides a convenient way to handle public key infrastructures by enabling developers to write XML transactions for digital signature processing. This chapter contains these topics: ■ Oracle XKMS Features and Benefits ■ Setting Up Your Oracle XKMS Environment ■ Core Classes and Interfaces ■ The Oracle XKMS Java API Reference ■ Example Programs

12.1 Oracle XKMS Features and Benefits

Oracle XKMS is a pure Java solution which consists of a toolkit for locating keys and verifying user identities across businesses and applications. It supports the secure, trusted messaging required for web services, and provides a way to sidestep some of the costs and complexity associated with PKI. Oracle XKMS provides the following features: ■ Simplified access to PKI functionality - by implementing the W3C XKMS Standard, Oracle XKMS combines the simplicity of XML with the robustness of PKI. With this toolkit, developers can easily deploy robust application functionality by deploying secure, lightweight client software. ■ Supports complete keycertificate life cycle - Oracle XKMS helps enterprise applications locate, retrieve, and validate signature and encryption keys using lightweight Web Services infrastructure. ■ Secures XKMS messages using XML Signatures - requests and responses can be digitally signed using Oracle XML toolkit. ■ 100 Java with no native methods ■ Works with JAXP 1.1 compliant XML parsers

12.1.1 Oracle XKMS Packages

The Oracle XKMS library contains the following packages: