You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Jason Brown (JIRA)" <ji...@apache.org> on 2017/11/21 12:49:00 UTC
[jira] [Commented] (CASSANDRA-14064) Allow using file based
certificates instead of keystores
[ https://issues.apache.org/jira/browse/CASSANDRA-14064?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16260668#comment-16260668 ]
Jason Brown commented on CASSANDRA-14064:
-----------------------------------------
Note: the {{KeyProvider}}, used on the encryption-at-rest path, is a step toward this
> Allow using file based certificates instead of keystores
> --------------------------------------------------------
>
> Key: CASSANDRA-14064
> URL: https://issues.apache.org/jira/browse/CASSANDRA-14064
> Project: Cassandra
> Issue Type: New Feature
> Components: Streaming and Messaging
> Reporter: Stefan Podkowinski
> Assignee: Stefan Podkowinski
> Fix For: 4.x
>
>
> The requirement of having to use a secure archive (keystore) for your certificates and keys is not very common outside the Java ecosystem. Most servers will accept individual certificate and key files and will come with instructions how to generate those using openssl. This should also be an option for Cassandra for users who see no reason in additionally having to deal with keystores.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org