You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
xml-encryption@0.11.0, the current included version, doesn't support http://www.w3.org/2009/xmlenc11#aes128-gcm, which, per an announcement from DFN-AAI, the German identity federation:
The new major version Shibboleth IdP 4.x uses the secure encryption algorithm AES-GCM for SAML assertions per default. The old IdP version 3.x still relies on AES-CBC which is no longer considered secure.
The most up-to-date version includes this algorithm.
#198 gets a step closer, but xml-encryption@1.0.0 does not include that algorithm.
The text was updated successfully, but these errors were encountered:
xml-encryption@0.11.0
, the current included version, doesn't supporthttp://www.w3.org/2009/xmlenc11#aes128-gcm
, which, per an announcement from DFN-AAI, the German identity federation:The most up-to-date version includes this algorithm.
#198 gets a step closer, but
xml-encryption@1.0.0
does not include that algorithm.The text was updated successfully, but these errors were encountered: