Welcome to Apache Santuario™
The Apache Santuario™ project is aimed at providing implementation of the primary security standards for XML:
- XML-Signature Syntax and Processing
- XML Encryption Syntax and Processing.
Two libraries are currently available.
- Apache XML Security for Java: This library includes the standard JSR-105 (Java XML Digital Signature) API, a mature DOM-based implementation of both XML Signature and XML Encryption, as well as a more recent StAX-based (streaming) XML Signature and XML Encryption implementation.
- Apache XML Security for C++: This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives to OpenSSL are less complete and less mature.
Versions 2.1.0 and 2.0.9 of the Apache XML Security for Java library have been released.
Please see the release notes for more information.
Version 1.7.3 of the Apache XML Security for C++ library has been released, fixing a number of bugs, including a major issue involving ECDSA signature generation.
See here for old news.