This preface introduces the new and changed features of Oracle Security Developer Tools.
Topics in this section include:
This edition of Developing Applications with Oracle Security Developer Tools contains usability enhancements and editorial corrections.
New Java API references (javadocs) have been published for all the tools. Links to the references are available in these sections:
New Java API references have been published for all the tools.
11g Release 1 Patch Set 5 provides these features:
JWT toolkit
For details, see Chapter 13, "Oracle JSON Web Token".
This document contains the following updates:
Graphics have been revised.
Documentation errata have been corrected.
The new features of Oracle Security Developer Tools include the following:
All higher level toolkits now take JCE keys and certificates as parameters instead of Oracle crypto keys and certificates.
This lets you use any JCE provider, in particular a hardware-based JCE provider.
Note:
Due to this change, the 11g Release 1 APIs are not compatible with pre-11g. Your existing code will need to be changed to compile with 11g Oracle Security Developer Tools.Support for Web Services Security 1.1. This includes:
implementation of Kerberos and SAML 2.0 profiles
WS-i BSP conformance
Upper layers of the toolkit hierarchy that called the Oracle Security Engine now call the new JCE Provider for cryptographic functions
Figure 1–2 depicts the relationships between tools in the toolkit.
Oracle Fusion Middleware 11g contains updates to most classes in the SAML2 library. The fixes fall into a few broad categories:
These include issues such as incorrectly spelled XML element or attribute names, incorrect namespace URIs, or incorrect ordering of child elements.
Many classes were outputting both a default declaration and a prefix-bound declaration for the same namespace. This causes issues for some XML parsers and SOAP implementations, which can cause XML signature verification errors in some 3rd-party SAML software.
The fixes remove the extra default namespace declarations, leaving only the prefix-bound declarations.