Sean Mullan's Blog

Apache XML Security 1.4.2 Beta 1 available for testing

I just posted the initial beta release of Apache XML Security 1.4.2. This release contains many bug fixes and a few enhancements, such as an implementation of Canonical XML 1.1.

If you use Apache XML Security or JSR 105 in your applications and products, please download it and test it and report any bugs or issues that you find on the Apache XML Security mailing list.

Configuring the logging properties for JSR 105 and Apache XML Signature applications.

A while ago, I blogged about XML Signature debugging and how to configure the logging mechanism to emit debug information.

This configuration works if you are using the JSR 105 bundled with JDK 6. However, if you are using JSR 105 as bundled with Apache XML Security, you need to make a tweak to the configuration file because some of the packages are named differently. Here are the diffs you should apply:



< com.sun.org.apache.xml.internal.security.level = FINER

---

> org.apache.xml.security.level = FINER

Using JSR 105 with JDK 1.4 or 1.5

JSR 105 (XML Digital Signature API) is included with JDK 6, but is also available separately, for example as part of the Apache XML Security Project. This allows you to use the JSR with earlier JDK/JREs such as JDK 1.4 or JDK 5.

If you do this, however, be aware that the JSR 105 service provider implementation is not included by default with JDK 1.4 or JDK 1.5, so you may get some exceptions when instantiating an XMLSignatureFactory:

XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM");

javax.xml.crypto.NoSuchMechanismException: Mechanism type DOM not available
at javax.xml.crypto.dsig.XMLDSigSecurity.getEngineClassName(Unknown Source)
at javax.xml.crypto.dsig.XMLDSigSecurity.getImpl(Unknown Source)
at javax.xml.crypto.dsig.XMLDSigSecurity.getImpl(Unknown Source)
at javax.xml.crypto.dsig.XMLSignatureFactory.findInstance

The easiest workaround is to just instantiate and specify the service provider implementation (bundled with Apache XMLSec) as a parameter as follows:

XMLSignatureFactory factory = 
    XMLSignatureFactory.getInstance
        ("DOM", new org.jcp.xml.dsig.internal.dom.XMLDSigRI());

Alternatively, you can register the provider in the java.security file, or use the java.security.Provider API. See http://java.sun.com/javase/6/docs/technotes/guides/security/crypto/CryptoSpec.html#ProviderInstalling
"Registering a Provider" for more details.

JavaPolis '07

If you are attending JavaPolis '07, come check out my talk. I'll be speaking about XML Security and JSRs 105 and 106.

This will be a great opportunity to learn more about the new Java APIs for XML Signature and Encryption. I'll be showing you programming examples using the new APIs, discussing tips from my blog, and taking a look at the future of XML Signature and Encryption. My session is on Thursday, December 13th at 2PM in Room 6.

Even more XML Signature debugging tips

In a previous blog entry, I wrote about how to enable logging to get debugging output when using the Java XML DSig API to validate an XML Signature. There are also various methods in the API that you can invoke to get similar information. Here are a couple of those which are probably most useful:

SignedInfo.getCanonicalizedData
This method will return an InputStream containing the canonicalized bytes of the SignedInfo element. This method is very useful for debugging signature verification failures; often these are due to subtle changes in the canonicalized bytes, such as XML marshallers that format or "pretty-print" the XML, inserting newlines and other whitespace that break the signature. Here's an example of how to use this API:
```
System.out.println("Canonicalized SignedInfo:");
InputStreamReader isr = 
    new InputStreamReader(si.getCanonicalizedData());
char[] cbuf = new char[1024];
while (isr.read(cbuf, 0, 1024) != -1) {
    System.out.print(cbuf);
}
System.out.println();
```
You should compare the SignedInfo element that is output with the SignedInfo element in the Signature.
Reference.getDigestInputStream

This method returns the Reference's pre-digested input stream. Because this data can be potentially large and expensive to keep in memory, you must first enable reference caching. The data returned is the input to the digest operation during a validation or signing operation. This method is very useful for debugging reference validation failures as well as showing the user exactly what was signed, which is very important. The usage of this API is similar to SignedInfo.getCanonicalizedData:
```
// enable reference caching in your validation context 
valContext.setProperty
    ("javax.xml.crypto.dsig.cacheReference", Boolean.TRUE);
System.out.println("Pre-digested Input:");
InputStreamReader isr = 
    new InputStreamReader(ref.getDigestInputStream());
char[] cbuf = new char[1024];
while (isr.read(cbuf, 0, 1024) != -1) {
    System.out.print(cbuf);
}
System.out.println();
```

Apache XML Security 1.4.1 is ready for download

Apache XML Security 1.4.1 is ready for download.

This is a bugfix release that contains a major fix to the canonicalization engine. This bug was introduced in the 1.4.0 release, so it is highly recommended that anyone using 1.4.0 upgrade to the 1.4.1 version. The bug is that signatures containing non ascii characters created by the 1.4.0 library are not generated according to the standard.

Several other important bugs were fixed in 1.4.1. See the changelog for more information.

Java Security at JavaOne 2007

Wow, JavaOne is here again, next week to be exact! I hope you are
going. We have a bunch of new security features in the JDK and
a number of things we are thinking about for the future.
Come to one of our sessions to learn or discuss more about Java
Security:

1. Ask the Experts about Java Security in the Java Pavilion (booth #1538)
Time: Tuesday, 12:30 - 1:30 PM

2. Session ID: TS-2594
Session Title: Secure Coding Guidelines, Continued: Preventing Attacks and Avoiding Antipatterns
Time: Wednesday, 9:35 AM - 10:35 AM

3. Session ID: BOF-2516
Session Title: Stump the (Security) Band
Time: Thursday, 8:55 PM - 9:45 PM

New article on XML Signatures

Check out my new technicle article on java.sun.com: Programming With the Java XML Digital Signature API.

This article introduces you to the new XML Digital Signature API in JDK 6 and shows you how to generate and validate an XML Signature using the API. If you want to know more about XML Signatures and how to process them in Java, then start with this article. And let me know if you have any feedback. Thanks!

Apache Java XML Security 1.4 released!

Apache Java XML Security 1.4 has just been released. This is the first release that contains an implementation of JSR 105, the standard Java XML Digital Signature API. It also contains several performance and memory reduction improvements. See the website for more details and a download link.

Security Feature Planning for JDK 7

In a recent blog of my colleague Andreas Sterbenz, he asks the Java community for input on the security features for JDK 7. Specifically, he writes:

Let us know your suggestions for features in the security area including topics such as crypto, PKI, SSL, Kerberos, security manager + policy, authorization + JAAS, SASL, XML security, secure coding, performance, ease of use and administration, and everything else related to security. Or if you don't have a specific suggestion but find that there are some things that really annoy you or that you cannot do, we want to hear about that us well.

So I am posing the same question on my blog. Feel free to send your suggestions as comments on my or Andreas blog or directly to me at sean.mullan@sun.com, and together we'll collect all the feedback. As Andreas mentions, due to our limited resources, we will not be able to accomodate all requests. And of course, all Java SE platform features are subject to JCP approval.

Thanks for your feedback!

New java.sun.com article on XML Digital Signatures

There's a new java.sun.com article titled Java XML Digital Signatures. It includes an introduction to XML digital signatures and to the new Java XML Digital Signatures APIs (JSR 105). It also discusses how to accelerate Java XML digital signature performance using cryptographic hardware accelerators such as Sun's UltraSPARC T1 processor with cryptographic acceleration support. The article was written by Sun's Java Web Services Security and Performance Team.

Extending JSR 105 to support more URI reference types

In XML Signatures, Reference elements use URIs to describe the data that is to be digested and signed. Adding support for your own URI dereferencing implementation is pretty straightforward in JSR 105. First you need to create a concrete implementation of the javax.xml.crypto.URIDereferencer interface, ex:
public class MyURIDereferencer implements URIDereferencer { ...
There is only one method in URIDereferencer that you need to provide an implementation for: the dereference method:
Data dereference(URIReference uriReference, XMLCryptoContext context) throws URIReferenceException
This method takes a URIReference object describing the URI to be dereferenced and an XMLCryptoContext object that may contain additional information (such as the base URI) that is helpful in dereferencing the URI. The method returns a Data object containing the dereferenced data. The API defines two subclasses of Data: OctetStreamData for holding byte streams, and NodeSetData for holding node-sets.

Once you have implemented your URIDereferencer, it can be set as the default URIDereferencer by invoking the XMLCryptoContext.setURIDereferencer method (which takes a URIDereferencer argument), ex:

context.setURIDereferencer(new MyURIDereferencer());

Does this mean MyURIDereferencer is responsible for dereferencing all URI types? Yes. But what if I want to continue to use the built-in support and only add support for new types? Well you can do that too. In your URIDereferencer implementation, you should add some code to fallback to the built-in URIDereferencer for URI types that you do not support. You can do this by calling the XMLSignatureFactory.getURIDereferencer method which returns a reference to the XMLSignatureFactory's built-in implementation of URIDereferencer.

You can get the reference implementation of JSR 105 from the Java Web Service Developer's Pack v2.0, the beta 2 release or latest snapshot of JDK 6 (Mustang), or GlassFish.

Java SE Security Sessions at JavaOne

JavaOne is right around the corner, next week to be precise. If you are going, I encourage you to check out one (or both) of the technical sessions/BOFs related to Java Security:

TS-1238: Secure Coding Antipatterns: Avoiding Vulnerabilities. This session covers some common programming mistakes that can lead to security issues. More important, it shows you how to avoid them. We combed through past Java™ technology security vulnerabilities and other sources of information to come up with a list of security antipatterns that demonstrate some of the more commonly recurring problems. In each case, we discuss what is wrong and what is the proper fix.
Thursday 1:30PM-2:30PM, Moscone Center Gateway 102/103
BOF-0600: Meet the Java™ Platform, Standard Edition (Java SE) Security Team. This BOF will feature a short presentation discussing the new security features in Mustang and will be followed by an informal Q&A with the security team where you can ask questions about anything related to Java SE security.
Thursday, 10:30PM-11:20PM, Moscone Center Gateway 102/103

Mustang Beta is out! Here's what is new in Security

Mustang Beta (JDK 6) was released today and contains many new security features:

JSR 105, the Java XML Digital Signature API and implementation.
Native Platform GSS/Kerberos Integration. This feature allows Java GSS applications to take advantage of features in the native GSS/Kerberos implementation available on the platform.
Support for Smart Card I/O API. The Sun JDK bundles the Smart Card I/O API defined by JSR 268. It also includes a provider that implements Smart Card I/O using the PC/SC functionality of the host platform. This gives Java applications a platform independent way to communicate with Smart Cards using ISO 7816 APDUs.
Access to native PKI and cryptographic services on Microsoft Windows. Added the SunMSCAPI JCE provider which uses the Microsoft CryptoAPI (CAPI) to offer a variety of RSA cryptographic functions. It acts as a bridge between Java applications and the services offered by the default RSA cryptographic service provider available via CAPI. It provides access to X.509 certificates and RSA key pairs, it performs RSA encryption and decryption, and it creates and validates RSA signatures. It also supports a cryptographic random number generator.
Support for SPNEGO in Java GSS. The Simple and Protected GSS-API Negotiation (SPNEGO) mechanism is a pseudo security mechanism that enables GSS-API peers to securely negotiate a common security mechanism to be used.
JSSE pluggability restrictions have been removed. You can now plug in 3rd party JSSE providers that implement non-standard ciphersuites.
JAAS-based authentication using LDAP. Added a JAAS login module which enables users to perform authentication using credentials stored in an LDAP directory service.
JSSE (SSL/TLS) FIPS 140 compliance. The SunJSSE provider now supports an experimental FIPS 140 compliant mode. When enabled and used in combination with the SunPKCS11 provider and an appropriate FIPS 140 certified PKCS#11 token, SunJSSE is FIPS 140 compliant.
Socket read timeouts are fully supported by SunJSSE SSLSockets. In previous releases, calling setSoTimeout() would sometimes lead to unpredictable results. This has been corrected.
Support for the Kerberos AES and RC4-HMAC Encryption Types.
Support for new Kerberos Pre-Authentication Mechanisms.
Enhancements to the implementation of PKI Certificate Path Builder and Validator. Added support for segmented and indirect CRLs and the authority information access extension, resulting in improved performance, path discovery, and PKIX compliance (RFC 3280).

See the Mustang security documentation for more details on these and all of the features of Java security.

More XML Signature debugging tips

In a previous blog entry, I discussed how to determine what caused an invalid XML Signature and provided some code snippets. But for some programmers, this information may not be enough, and you may want to know more details.

Well then, good news. The reference implementation of XML DSig has extensive logging support, that when enabled, will provide you with lots of additional information. The log messages use the JDK logging facility (java.util.logging) so if you are familiar with how to format and configure that, you should breeze through the rest of my blog.

I'll show you two different ways to enable this logging, first if you are running your application from the command-line, and second if you are running it inside a J2EE container, in this case - Sun's Java System Application Server.

If you are running your application from the java command line, you need to configure the logging facility so that the XML DSig logging messages are emitted. You can do this by editing the JRE's default logging.properties file directly, or by creating your own file and set it with the java.util.logging.config.file property, ex:

java -Djava.util.logging.config.file=logging.properties ...

where logging.properties contains:

handlers= java.util.logging.ConsoleHandler
.level= INFO
java.util.logging.ConsoleHandler.level = FINER
java.util.logging.ConsoleHandler.formatter = java.util.logging.SimpleFormatter
org.jcp.xml.dsig.internal.level = FINER 
com.sun.org.apache.xml.internal.security.level = FINER

This will emit XML DSig log messages of level FINER and higher to the console. All other components will emit log messages of level INFO and higher.

With Sun's Application Server, enable logging using the Application Server admin console:

- In the tree component, select the Application Server node.
- Click the Logging tab.
- On the Logging Settings page, click the Log Levels tab.
- Add a new property named "org.jcp.xml.dsig.internal" with value "FINER"
- Add a new property named "com.sun.org.apache.xml.internal.security" with value "FINER"
- Click Save to save the changes

The log messages will be written to the application server log file.

I won't describe each and every log message in detail, but some of the most helpful are the following:

[java] FINER: Pre-digested input: ...

This message displays the content of the referenced data just before it was digested.

[java] FINE: Expected digest: ...

[java] FINE: Actual digest: ...

This message displays the expected and actual base64 encoded digest values of a Reference.

[java] FINE: Canonicalized SignedInfo: ...

This message displays the canonicalized SignedInfo element before it is signed.

You can get the reference implementation of JSR 105 from the Java Web Service Developer's Pack v2.0, an early access snapshot of JDK 6 (Mustang), or GlassFish.