Apache Ramaprt/C Archived News

This page contains information on previous releases running up to the latest.

13th May 2008 - Apache Rampart/C Version 1.2.0 Released

Download 1.2

Key Features

  1. Ability to send and verify UsernameTokens with
    • Username and PlainText password
    • Username and Digested password
  2. Ability to send Timestamp tokens
  3. SOAP message encryption
    • With derived key support for improved security
    • Symmetric and Asymmetric modes of operations
    • Support for AES and Tripple DES encryption
    • Signature encryption
    • Keys encryption
  4. SOAP message signature
    • XML signature with RSA-SHA1
    • Message authentication with HMAC-SHA1
    • Signature confirmation support
    • SOAP Header signing
  5. WS-Security Policy (spec 1.1) based configurations
    • Support for both Symmetric as well as Asymmetric policy bindings
    • Support for different modes of key identifiers
    • Support for different algorithm suites

      [Basic128, Basic 192, Basic256, TrippleDES, Basic128Rsa15, Basic192Rsa15,Basic256Rsa15, TripleDesRsa15]
  6. Replay detection support
    • Easy to use built-in replay detection module
    • Ability to deploy a customized replay detection module
  7. Different protection orders
    • Encrypt before signing
    • Sign before encrypting
  8. Extensible modules
    • Password callback module
    • Authentication module
    • Credentials module
  9. Keys management
    • Support for X509 token profile
    • Support for Key identifiers, Thumb prints, Issuer/Serial pairs, Embedded and Direct references
  10. WS-Secure Conversation Language support (Experimental)
    • Establishing Security Context and thereby maintaining a session
    • Per message key derivation
    • Support for stored securtiy context token
  11. WS-Trust Language support (Experimental)
    • Security Token Services (STS)
    • STS Client
    • Server and Client entrophy support
  12. Other
    • Easy to use deployment scripts
    • A comprehensive set of samples

Major Changes Since Last Release

  1. WS-Secure Conversation Language support (Experimental)
  2. WS-Trust Language support (Experimental)
  3. SAML Support
  4. Memory leak fixes
  5. Many bug fixes

16th Jan 2008 - Apache Rampart/C Version 1.1 Released

Download 1.1

Key Features

  1. Ability to send and verify UsernameTokens with
    • Username and PlainText password
    • Username and Digested password
  2. Ability to send Timestamp tokens
  3. SOAP message encryption
    • With derived key support for improved security
    • Symmetric and Asymmetric modes of operations
    • Support for AES and Tripple DES encryption
    • Signature encryption
    • Keys encryption
  4. SOAP message signature
    • XML signature with RSA-SHA1
    • Message authentication with HMAC-SHA1
    • Signature confirmation support
    • SOAP Header signing
  5. WS-Security Policy (spec 1.1) based configurations
    • Support for both Symmetric as well as Asymmetric policy bindings
    • Support for different modes of key identifiers
    • Support for different algorithm suites

      [Basic128, Basic 192, Basic256, TrippleDES, Basic128Rsa15, Basic192Rsa15,Basic256Rsa15, TripleDesRsa15]
  6. Replay detection support
    • Easy to use built-in replay detection module
    • Ability to deploy a customized replay detection module
  7. Different protection orders
    • Encrypt before signing
    • Sign before encrypting
  8. Extensible modules
    • Password callback module
    • Authentication module
    • Credentials module
  9. Keys management
    • Support for X509 token profile
    • Support for Key identifiers, Thumb prints, Issuer/Serial pairs, Embedded and Direct references
  10. Other
    • Easy to use deployment scripts
    • A comprehensive set of samples

Major Changes Since Last Release

  1. MAC support with HMAC-SHA1
  2. Derrived key encryption
  3. Derived key signing
  4. Symmetric policy bindings
  5. New security header processor based on SOAP header layout
  6. Security policy validator
  7. Extensible Replay detection module
  8. Signature confirmation support
  9. Support for X509 thumb prints
  10. Easy to use deployment scripts
  11. Memory leak fixes
  12. Many bug fixes

05th Oct 2007 - Apache Rampart/C Version 1.0 Released

Download 1.0

Key Features

  1. SOAP message encryption : Allows different parts of a SOAP message to be encrypted to keep the confidentiality of the message
  2. SOAP message signature : Allows different parts of a SOAP message to be signed to keep the integrity of the message
  3. Ability to send and verify UsernameTokens with
    1. PlainText password
    2. Digested password


    3. Allows users to send Username tokens for authentication purposes as per Web services security username token profile
  4. Ability to send Timestamp tokens : Allows users to add timestamps to their SOAP messages in order to ensure the freshness
  5. WS-Security Policy (spec 1.1) Policy based configurations as per WS-Security Policy : Allows users to express their security related requirements and constraints
  6. Replay detection support
  7. Improvements to the context model
  8. Authentication module implementation
  9. Credentials module implementation
  10. Improvements to Key/Certificate loading mechanisms
  11. Easy to use deployment scripts

11th May 2007 - Apache Rampart/C Version 0.90 Released

Download 0.90

Key Features

  1. SOAP message encryption : Allows different parts of the body of SOAP message to be encrypted to keep the confidentiality of the message
  2. SOAP message signature : Allows different parts of a SOAP message to be signed to keep the integrity of the message
  3. Ability to send and verify UsernameTokens with
    1. PlainText password
    2. Digested password


    3. Allows users to send Username tokens for authentication purposes as per Web services security username token profile
  4. Ability to send Timestamp tokens : Allows users to add timestamps to their SOAP messages in order to ensure the freshness
  5. Policy based configurations: Allows clients and services to express their security related requirements and constraints