Algorithm mapping configuration settings

Use this page to view a list of custom uniform resource identifier (URI) algorithms for digest value calculation, signature, key encryption, and data encryption. WAS maps these algorithms to an implementation of the algorithm factory engine interface. With algorithm mappings, service providers can extend the cryptographic algorithms for XML digital signature and XML encryption.

To view this administrative console page on the cell level, complete the following steps:

  1. Click Security > Web services.

  2. Under Additional properties, click Algorithm mappings > algorithm_factory_engine_class_name or click New.

To view this administrative console page on the server level, complete the following steps:

  1. Click Servers > Application servers > servername.

  2. Under Security, click Web services: Default bindings for Web services security.

  3. Under Additional properties, click Algorithm mappings > algorithm_factory_engine_class_name or click New.

Algorithm factory engine class

Specifies the custom class that implements the engine factory interface.

To use this algorithm mapping feature, specify a custom algorithm class in the Algorithm factory engine class field for digital signature, data encryption, digest value calculation, and key encryption. The algorithm factory engine provides a plug-in point for service providers to provide their implementation for digest value calculation, digital signature, key encryption, and data encryption that is based on a specified algorithm uniform resource identifier (URI). By clicking Algorithm URI under Additional properties, one can specify the algorithm URI and its usage type. WebSphere Application Server supports the following algorithm types:

Message digest

Specifies the algorithm URI that is used for digest value calculation.

Signature

Specifies the algorithm URI that is used for digital signatures including both signing and signature verification.

Data encryption

Specifies the algorithm URI that is used for both encrypting and decrypting data.

Key encryption

Specifies the algorithm URI that is used for both encrypting and decrypting the encryption key.

If the URI is used for multiple usage types, then define a mapping of the URI to each usage type. The actual implementation of the algorithm is provided by the custom class that implements the engine factory interface. For more information, refer to the information center documentation on how to implement a factory class.