Share via


<keyAlgorithm> Element for <securityTokenManager>

Specifies the cryptographic algorithm used by the specified XML-based security token to transform data.

<microsoft.web.services3> Element
  <security> Element
    <securityTokenManager> Element
      <add> Element for <securityTokenManager>

<keyAlgorithm name />

Attributes and Elements

Attributes

Attribute Description

name

Required attribute. When the security token uses symmetric keys, the name attribute must be one of the following key algorithms: AES128, AES192, AES256, TripleDES.

When the security token uses asymmetric keys, the name attribute must be either RSA15 or RSAOAEP, which refer to the RSA15 and RSA_OAEP cryptographic algorithms, respectively.

Child Elements

None.

Parent Elements

Element Description

<add> Element for <securityTokenManager>

Adds a user-supplied custom security token manager for an XML-based security token to the application domain.

Remarks

Use the <keyAlgorithm> element to interoperate with other operating systems that use different cryptographic algorithms than WSE does for a specific security token. When you change the defaults, the sender and receiver must be configured to process keys generated for that security token type using the same key generation algorithm.

Example

The following code example specifies that symmetric session keys are generated using the AES192 algorithm for UsernameToken security tokens.

<configuration>
<microsoft.web.services3>
    <security>
      <securityTokenManager>
        <add
          type="Microsoft.Web.Services3.Security.Tokens.UsernameTokenManager, Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" priority="1" group="0"
         namespace="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" 
         localName="UsernameToken">
           <keyAlgorithm name="AES192"/>
        </add>
      </securityTokenManager>
    </security>
  </microsoft.web.services3>
</configuration>

See Also

Reference

<securityTokenManager> Element