It is not possible to issue a valid signed and encrypted AS4 message using BDEW client with keys generated with brainpoolP256r1 EC algorithm. It looks like wss4j and xmlsec do not support brainpool curves - only NIST curves (secp256r1, secp384r1...).
brainpoolP256r1 is unfortunately the only one allowed curve for BDEW profile.
Anybody already faced that issue? Or are we doing something wrong? :(
It is not possible to issue a valid signed and encrypted AS4 message using BDEW client with keys generated with
brainpoolP256r1
EC algorithm. It looks likewss4j
andxmlsec
do not support brainpool curves - only NIST curves (secp256r1
,secp384r1
...).brainpoolP256r1
is unfortunately the only one allowed curve for BDEW profile.Anybody already faced that issue? Or are we doing something wrong? :(