<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> <title>XML Security Library</title> </head> <body><table witdh="100%" valign="top"><tr valign="top"> <td valign="top" align="left" width="210"> <img src="images/logo.gif" alt="XML Security Library" border="0"><p></p> <ul> <li><a href="index.html">Home</a></li> <li><a href="download.html">Download</a></li> <li><a href="news.html">News</a></li> <li><a href="documentation.html">Documentation</a></li> <ul> <li><a href="faq.html">FAQ</a></li> <li><a href="api/xmlsec-notes.html">Tutorial</a></li> <li><a href="api/xmlsec-reference.html">API reference</a></li> <li><a href="api/xmlsec-examples.html">Examples</a></li> </ul> <li><a href="xmldsig.html">XML Digital Signature</a></li> <ul><li><a href="http://www.aleksey.com/xmlsec/xmldsig-verifier.html">Online Verifier</a></li></ul> <li><a href="xmlenc.html">XML Encryption</a></li> <li><a href="c14n.html">XML Canonicalization</a></li> <li><a href="bugs.html">Reporting Bugs</a></li> <li><a href="http://www.aleksey.com/pipermail/xmlsec">Mailing list</a></li> <li><a href="related.html">Related</a></li> <li><a href="authors.html">Authors</a></li> </ul> <table width="100%"> <tr> <td width="15"></td> <td><a href="http://xmlsoft.org/"><img src="images/libxml2-logo.png" alt="LibXML2" border="0"></a></td> </tr> <tr> <td width="15"></td> <td><a href="http://xmlsoft.org/XSLT"><img src="images/libxslt-logo.png" alt="LibXSLT" border="0"></a></td> </tr> <tr> <td width="15"></td> <td><a href="http://www.openssl.org/"><img src="images/openssl-logo.png" alt="OpenSSL" border="0"></a></td> </tr> <!--Links - start--><!--Links - end--> </table> </td> <td valign="top"><table width="100%" valign="top"><tr><td valign="top" align="left" id="xmlsecContent"> <div align="Center"> <h1>XML Security Library</h1> </div> <p> XML Security Library is a C library based on <a href="http://xmlsoft.org/">LibXML2</a>. The library supports major XML security standards: </p> <ul> <li> <a href="http://www.w3.org/TR/xmldsig-core">XML Signature</a> </li> <li> <a href="http://www.w3.org/TR/xmlenc-core/">XML Encryption</a> </li> <li> <a href="http://www.w3.org/TR/xml-c14n">Canonical XML</a> (was included in <a href="http://xmlsoft.org">LibXML2</a>)</li> <li> <a href="http://www.w3.org/TR/xml-exc-c14n">Exclusive Canonical XML</a> (was included in <a href="http://xmlsoft.org">LibXML2</a>)</li> </ul> <p> XML Security Library is released under the <a href="http://www.opensource.org/licenses/mit-license.html">MIT Licence</a> see the Copyright file in the distribution for details.<br><br></p> <p><b>News</b></p> <ul> <li>September 12 2009<br> Changes in <a href="download.html">XML Security Library 1.2.13</a> release: <ul> <li> <a href="http://xmlsoft.org/">LibXML2</a> version 2.7.4 is now required</li> <li>Implemented support for <a href="http://www.w3.org/TR/xml-c14n11/">C14N version 1.1</a></li> <li>Increase default minimum hmac size to 80 bits</li> <li>Added support for --with-libxml-src and --with-libxslt-src ./configure options</li> <li>Fixed XML dump output</li> </ul> </li> <li>July 14 2009<br> The new <a href="download.html">XML Security Library 1.2.12</a> release includes the following changes (see ChangeLog for the complete list of changes): <ul> <li>Fixed HMAC vulnerability with small values of HMAC length (<a href="http://www.kb.cert.org/vuls/id/466161">CERT VU #466161</a>).</li> <li>Added support for the GOST implemented by Russian Crypto Pro CSP (patch from Dennis Prochko)</li> <li>Added an option to return the replaced node (based on the patch from Frank Gross)</li> <li>Added new function xmlSecNodeEncodeAndSetContent for encoding special chars in the node content.</li> <li>Added configurable Base64 line length.</li> <li>Bug fixes.</li> </ul> </li> <li>November 6 2007<br> The new <a href="download.html">XML Security Library 1.2.11</a> release includes the following changes: <ul> <li>Mingw port (Roumen Petrov).</li> <li>Better support for non micorsoft CSP's (Wouter and Ed Shallow).</li> <li>Bug fixes.</li> </ul> </li> <li>June 12 2006<br> The new <a href="download.html">XML Security Library 1.2.10</a> release includes the following changes: <ul> <li>GOST algorithms support (Dmitry Belyavsky)</li> <li>Ability to disable system trusted certs in xmlsec-mscrypto (Dmitry Belyavsky)</li> <li>New functions for adding X509IssuerName and X509SerialNumber nodes to the template (Dmitry Belyavsky) </li> <li>Better packaging support for Fedora and Debian (Daniel Veillard, John Belmonte)</li> <li>Cleanups from Coverity tool reports</li> <li>Bug fixes</li> </ul> </li> </ul> </td></tr></table></td> </tr></table></body> </html>