Nonce [Settings]
Attaches a Nonce element to the message part specified by the dialect and keyword attributes. Nonce is a randomly generated value.
To view this page in the console, click one of the following paths:
When a Nonce is added to the specific parts of a message, it might prevent theft and replay attacks because a generated Nonce is unique. For example, without a Nonce, when a user name token is passed from one machine to another machine by using a non-secure transport, such as HTTP, the token might be intercepted and used in a replay attack. The user name token can be stolen even if you use XML digital signature and XML encryption. However, it might be prevented by adding a Nonce.
Configuration tab
The Configuration tab shows configuration properties for this object. These property values are preserved even if the runtime environment is stopped then restarted. See the information center task descriptions for information about how to apply configuration changes to the runtime environment.
General Properties
Name
The name of the Nonce element.
Information | Value |
---|---|
Required | Yes |
Data type | String |
Dialect
The expression dialect to use.
Information | Value |
---|---|
Required | Yes |
Data type | drop-down list |
Keyword
The message part to attach the Nonce element to, specified in a way defined by the chosen dialect.
- action
- Specifies the wsa:Action element.
- body
- Specifies the SOAP body element.
- dsigkey
- Specifies the key information element, which is used for digital signature.
- enckey
- Specifies the ds:KeyInfo element, which is used for encryption.
- messageid
- Specifies the wsa:MessageID element.
- relatesto
- Specifies the wsa:RelatesTo element.
- securitytoken
- Specifies any security token elements, for example the wsse:BinarySecurityToken element.
- timestamp
- Specifies the wsu:Timestamp element. This element determines whether the message is valid based upon the time that the message is sent and then received.
- to
- Specifies the wsa:To element.
/*[namespace-uri()='http://schemas.xmlsoap.org/soap/envelope/' and local-name()='Envelope']
/*[namespace-uri()='http://schemas.xmlsoap.org/soap/envelope/' and local-name()='Body']
Information | Value |
---|---|
Required | Yes |
Data type | String |