You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@qpid.apache.org by "Keith Wall (JIRA)" <ji...@apache.org> on 2016/06/20 11:45:06 UTC

[jira] [Created] (QPID-7309) [Java Client] [Message Encryption] Improve verification of the recipient's certificate

Keith Wall created QPID-7309:
--------------------------------

             Summary: [Java Client] [Message Encryption] Improve verification of the recipient's certificate
                 Key: QPID-7309
                 URL: https://issues.apache.org/jira/browse/QPID-7309
             Project: Qpid
          Issue Type: Improvement
          Components: Java Client
            Reporter: Keith Wall
             Fix For: qpid-java-6.1, qpid-java-6.0.4


The current implementation of end-to-end message encryption permits the encryption of messages with an untrusted certificates.  The default behaviour should validate the certificate's chain of trust by default and fail if the chain of trust cannot be established.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org