You are viewing an old version of this page. View the current version.
Compare with Current
View Page History
« Previous
Version 18
Next »
Welcome to Apache Santuario
The Project
The
Unknown macro: {tm} Apache Santuario
project is aimed at providing implementation of the primary security standards for XML
- XML-Signature Syntax and Processing
- XML Encryption Syntax and Processing.
Two libraries are currently available.
- Apache XML Security for Java: This library includes a mature Digital Signature and Encryption implementation. It also includes the standard JSR 105 (Java XML Digital Signature) API. Applications can use the standard JSR 105 API or the Apache Santuario API to create and validate XML Signatures.
- Apache XML Security for C++: This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives to OpenSSL are less complete and less mature.
Apache Santuario, Apache, and the Apache feather logo are trademarks of The Apache Software Foundation.
News
July 2011
A security advisory, CVE-2011-2516, affecting Apache XML-Security for C++ versions prior to 1.6.1, has been issued.
The Apache Santuario team are pleased to announce the release of version 1.6.1 of the Apache XML Security for C++ library. This release provides bug fixes and addresses CVE-2011-2516.
May 2011
The Apache Santuario team are pleased to announce the release of version 1.4.5 of the Apache XML Security for Java library. This release fixes a thread safety issue in the ResourceResolver, and a regression in signature generation for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.
Please see the release notes for more information.
Old News
See here for older news.