2 Replies Latest reply on Apr 17, 2008 3:23 PM by anil.saldhana

Encrypting attributes/properties of beans

anil.saldhana Mar 22, 2008 8:11 PM

Scott, you have mentioned this topic in the passing, a few times. Could you elaborate on your thoughts here? I can start thinking about this a bit over time.

I am guessing that you meant securing the bean properties for RW with crypto.

1. Re: Encrypting attributes/properties of beans

starksm64 Mar 24, 2008 9:23 PM (in response to anil.saldhana)

Its an aspectization of the JaasSecurityDomain.encode/decode operations, applied to one or more bean properties. How the cipher/parameters for the attribute encryption are integrated into the aspect metadata is one issue.

Before the hitting the write aspect of an encrypted property its clear-text, after its encrypted and this is what is stored in the bean. Likewise, before hitting the read aspect of an encrypted property its encrypted, clear-text after.

The aspect also needs to be applied to metadata sources of the property if were worried about those being saved as can be the case for the profile service.
Actions
2. Re: Encrypting attributes/properties of beans

anil.saldhana Apr 17, 2008 3:23 PM (in response to anil.saldhana)

http://jira.jboss.com/jira/browse/JBAS-5461
Actions

Go to original post