Anil Saldhana [http://community.jboss.org/people/anil.saldhana] created the discussion "AS7: Sensitive Attributes Masking" To view the discussion, visit: http://community.jboss.org/message/619770#619770 -------------------------------------------------------------- We can extend masking of passwords to all attributes that the user determines to be sensitive and not be displayed in clear text in the configuration files. There are two entities: a) Sensitive Attribute Holder (SAH). b) Requesting Party (RP). The "SAH" will securely hold all the sensitive attributes in one place. Ideally using AES256+ type encryption. The Requesting Party is an entity in the AS that wants to get access to the secure attribute. The challenge is to ensure the authenticity of the RP. How do we know RP is the real owner of the attribute? h2. h2. Some thoughts: 1. We can provide a shared key to the RP via an offline tool. The RP will configure the shared key (how do we secure this shared key?). 2. When the RP asks for the attribute, we can check the package of the RP and ensure that it matches the package that was used in generation of the shared key provided. -------------------------------------------------------------- Reply to this message by going to Community [http://community.jboss.org/message/619770#619770] Start a new discussion in PicketBox Development at Community [http://community.jboss.org/choose-container!input.jspa?contentType=1&...]