Skip to content

LiteralEncryptionInterceptor

Markus Sabadello edited this page Sep 19, 2013 · 5 revisions

This interceptor encrypts literals from an incoming XDI message, and decrypts literals in an XDI message result. It invokes an instance of LiteralCryptoService to perform encryption and decryption.

Interfaces and Classes

Properties

  • literalCryptoService: An instance of LiteralCryptoService that can encrypt literals from an incoming XDI message, and decrypt literals in an XDI message result.

StaticLiteralCryptoService

This LiteralCryptoService can perform encryption and decryption using a statically configured AES secret key.

Example Spring Bean

<bean class="xdi2.messaging.target.interceptor.impl.encryption.LiteralEncryptionInterceptor">
	<property name="literalCryptoService">
		<bean class="xdi2.messaging.target.interceptor.impl.encryption.StaticLiteralCryptoService">
			<property name="secretKeyString" value="HLEuoqz6NuGR4Ek8wRytgccRvUO5lbXhH9Ox9UGZ2/U=" />
		</bean>
	</property>
</bean>

Security Considerations

This interceptor can protect from an attacker that has access to the XDI2 server's backend storage only, but not from an attacker that has full access to the XDI2 server itself.

Furthermore, this interceptor can only encrypt literals, but not the structure of an XDI graph.

Clone this wiki locally