You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Larry McCay (Jira)" <ji...@apache.org> on 2021/10/09 18:50:00 UTC
[jira] [Commented] (KNOX-925) Configurable - Encryption Algorithm
and it's key size, Salt and iteration count for PBKDF
[ https://issues.apache.org/jira/browse/KNOX-925?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17426686#comment-17426686 ]
Larry McCay commented on KNOX-925:
----------------------------------
Due to upcoming release of 1.6.0 and the need for an incompatible change coming up for log4j migration, we are moving this out to the 2.0.0 release. As of now, 1.6.0 will be the last 1.x.x release due to the incompatible change. If there is a critical need for this in 1.6.0 please feel free to move the fixVersion back to 1.6.0 with a note of justification.
> Configurable - Encryption Algorithm and it's key size, Salt and iteration count for PBKDF
> -----------------------------------------------------------------------------------------
>
> Key: KNOX-925
> URL: https://issues.apache.org/jira/browse/KNOX-925
> Project: Apache Knox
> Issue Type: Improvement
> Components: Server
> Affects Versions: 0.11.0
> Reporter: Krishna Pandey
> Priority: Minor
> Fix For: 2.0.0
>
>
> We can make key length configurable to be used with the RSA algorithm, so that Users can set the value as per current cryptography guidelines.
> Also, in a password-based key derivation function, the base key is a password and the other parameters are a salt value and an iteration count. An iteration count has traditionally served the purpose of increasing the cost of generating keys from a password. We can keep the Scheme, Salt and Iteration Count configurable for Users to fine tune as per their requirements.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)