Why Enabling SHA256 Support for XML Signatures Breaks JWT Signing

8 January 2018

For some time, there have been bug reports to Kentor.AuthServices, IdentityServer3, and System.IdentityModel.Tokens.Jwt about enabling SHA256 XML signature support sometimes breaks JWT signing. It fails with an error of System.Security.Cryptography.CryptographicException: Invalid algorithm specified.

This has been one of those annoying bugs where everyone’s solution works perfectly by itself but, when combined, they fail. I closed this issue in AuthServices with a comment that “works for us, has to be IdentityServer3/System.IdentityModel.Tokens doing something strange.” I’ve finally had some time to look deeper into this thanks to IRM that asked me to do this as a consultancy service. Without someone paying for the time, it’s hard to spend the hours needed to find the root cause of a problem like this.

Read full news article on Dzone

Date:

8 January 2018

Categorie(s):

NEWS

Tag(s):

Authentication, Cryptography, JWT, Support, Why, XML

The Importance of Team Culture in Startups – Brian Carbaugh – FS #415 November 2024
Data breach exposes 122M records from DemandScience following initial denials15 November 2024
Bitsight acquires threat intelligence provider Cybersixgill for $115M15 November 2024
Using Machine Learning to Prevent Fraud in E-Commerce Transactions14 November 2024
122 million people’s business contact info leaked by data broker14 November 2024