Apache XML Security for C++


The Apache XML Security for C++ library is an implementation of the XML Digital Signature and Encryption specifications, along with some additional XKMS code. It is designed to be easily ported to new platforms, and is generally tested on Windows, Linux, OS X, and Solaris. Other platforms with autoconf support may also work.

The library makes use of the Apache Xerces-C XML Parser and Xalan-C XSLT processor. The latter is used for processing XPath and XSLT transforms. The use of Xalan-C is optional, but without it, XPath and XSLT transformations cannot be performed.


The state of the Xalan-C project is unclear at this time, and these features should be viewed with caution.

In addition, the library currently uses OpenSSL to provide cryptographic functionality. The cryptographic interface is implemented via a thin wrapper layer, and development versions of implementations for the Windows Cryptographic API and NSS have also been implemented.


Version 1.7.2 of the Apache XML Security for C++ library has been released. This release addresses a number of security vulnerabilities reported to the project. All library users should upgrade to this release as soon as practical.

Old News

See here for old news.