Algorithms settings - Web Services
To view supported cryptographic and canonicalization algorithms. Algorithms are used to reconcile XML differences.
Services | Policy sets | Application policy sets | policy_set_name | WS-Security policy | [Main policy link | Bootstrap policy link] | [Algorithms for symmetric tokens link | Algorithms for asymmetric tokens link]
This administrative console page applies only to JAX-WS applications.
Algorithm suite
Supported algorithms required for performing cryptographic operations with symmetric or asymmetric key-based security tokens.
All of the algorithm values in this field specify an algorithm suite. Algorithm suites and the values they each represent are detailed in the Web Services Security Policy Language (WS-SecurityPolicy) July 2005 Version 1.1 specification. Select a supported algorithm from the following list:
- Basic128Rsa15 (default)
- Basic256
- Basic192
- Basic128
- TripleDes
- Basic256Rsa15
- Basic192Rsa15
- TripleDesRsa15
- Basic256Sha256
- Basic192Sha256
- Basic128Sha256
- TripleDesSha256
- Basic256Sha256Rsa15
- Basic192Sha256Rsa15
- Basic128Sha256Rsa15
- TripleDesSha256Rsa15
This table defines values for the components for each algorithm suite.
suite components. The algorithms are used to perform cryptographic
When using a Kerberos custom token based on the OASIS Web Services Security Specification for Kerberos Token Profile V1.1, only Aes128, Aes256, and TripleDes encryption-based algorithm suites are supported.Algorithm Suite Digest Encryption Symmetric Key Wrap Asymmetric Key Wrap Encryption key Derivation Signature key Derivation Minimum Symmetric Key Length Basic128Rsa15 Sha1 Aes128 KwAes128 KwRsa15 PSha1L128 PSha1L128 128 Basic256 Sha1 Aes256 KwAes256 KwRsaOaep PSha1L256 PSha1L192 256 Basic192 Sha1 Aes192 KwAes192 KwRsaOaep PSha1L192 PSha1L192 192 Basic128 Sha1 Aes128 KwAes128 KwRsaOaep PSha1L128 PSha1L128 128 TripleDes Sha1 TripleDes KwTripleDes KwRsaOaep PSha1L192 PSha1L192 192 Basic256Rsa15 Sha1 Aes256 KwAes256 KwRsa15 PSha1L256 PSha1L192 256 Basic192Rsa15 Sha1 Aes192 KwAes192 KwRsa15 PSha1L192 PSha1L192 192 TripleDesRsa15 Sha1 TripleDes KwTripleDes KwRsa15 PSha1L192 PSha1L192 192 Basic256Sha256 Sha256 Aes256 KwAes256 KwRsaOaep PSha1L256 PSha1L192 256 Basic192Sha256 Sha256 Aes192 KwAes192 KwRsaOaep PSha1L192 PSha1L192 192 Basic128Sha256 Sha256 Aes128 KwAes128 KwRsaOaep PSha1L128 PSha1L128 128 TripleDesSha256 Sha256 TripleDes KwTripleDes KwRsaOaep PSha1L192 PSha1L192 192 Basic256Sha256Rsa15 Sha256 Aes256 KwAes256 KwRsa15 PSha1L256 PSha1L192 256 Basic192Sha256Rsa15 Sha256 Aes192 KwAes192 KwRsa15 PSha1L192 PSha1L192 192 Basic128Sha256Rsa15 Sha256 Aes128 KwAes128 KwRsa15 PSha1L128 PSha1L128 128 TripleDesSha256Rsa15 Sha256 TripleDes KwTripleDes KwRsa15 PSha1L192 PSha1L192 192
Canonicalization algorithm
Whether to use inclusive or exclusive canonicalization.
The following supported canonicalization algorithms are available in this list:
- Exclusive canonicalization
- Inclusive canonicalization
The default value is Exclusive canonicalization.
XPath version
Version of the XPath filter to use.
The following supported XPath versions are available:
- XPath 1.0
- XPathfilter 2.0
The XPathfilter 2.0 version is the default value.
Use security token reference transformation
Whether the security token reference is transformed. Indicate whether the security token reference transform is either True or False.
Related tasks
Configure the WS-Security policy Manage policy sets using the administrative console
Application policy sets collection Application policy set settings