When
running with JDK 1.4, the list of supported key transport algorithms will
not include this one. This algorithm will appear in the list of supported
key transport algorithms when running with JDK 1.5.
Restriction: This
algorithm is not supported when the WebSphere Application Server is running
in Federal Information Processing Standard (FIPS) mode.
By default,
the RSA-OAEP algorithm uses the SHA1 message digest algorithm to compute a
message digest as part of the encryption operation. Optionally, you can use
the SHA256 or SHA512 message digest algorithm by specifying a key encryption
algorithm property. The property name is:
com.ibm.wsspi.wssecurity.enc.rsaoaep.DigestMethod.
The property value is one of the following URIs of the digest method:
- http://www.w3.org/2001/04/xmlenc#sha256
- http://www.w3.org/2001/04/xmlenc#sha512
By default, the RSA-OAEP algorithm uses a null string for the
optional encoding octet string for the OAEPParams. You can provide an explicit
encoding octet string by specifying a key encryption algorithm property. For
the property name, you can specify
com.ibm.wsspi.wssecurity.enc.rsaoaep.OAEPparams.
The property value is the base 64-encoded value of the octet string.
Important: You can set these digest method and OAEPParams properties
on the generator side only. On the consumer side, these properties are read
from the incoming Simple Object Access Protocol (SOAP) message.