You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Andy LoPresto (JIRA)" <ji...@apache.org> on 2018/05/17 21:22:00 UTC

[jira] [Updated] (NIFI-5211) Create JSON reader, writer, signer, and verifier

     [ https://issues.apache.org/jira/browse/NIFI-5211?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andy LoPresto updated NIFI-5211:
--------------------------------
    Fix Version/s:     (was: 1.7.0)

> Create JSON reader, writer, signer, and verifier
> ------------------------------------------------
>
>                 Key: NIFI-5211
>                 URL: https://issues.apache.org/jira/browse/NIFI-5211
>             Project: Apache NiFi
>          Issue Type: Sub-task
>          Components: Extensions
>    Affects Versions: 1.6.0
>            Reporter: Andy LoPresto
>            Priority: Minor
>              Labels: security, tls
>
> This piece should accept a TLS configuration object and serialize/deserialize it to/from JSON, and should provide a signature generation and verification service to ensure it is trusted and has not been manipulated. 
> * JSON de/serialization
> * Read arbitrary JSON and verify an HMAC/SHA-512 signature before parsing
> * Generate a signature over JSON and persist in place
> * Derive the signature key from the master key in {{bootstrap.conf}} with a one-way transformation (i.e. {{HMAC/SHA-512("JSON TLS key", MK) -> TLSK}})



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)