Ensure digital signatures in Glance are a minimum of SHA2
Bug #1288545 reported by
Feilong Wang
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Medium
|
Feilong Wang |
Bug Description
It would be great to enhance Glance to use minimum of SHA2 to do digital signature for FIPS compliance.
In FIPS(FEDERAL INFORMATION PROCESSING STANDARDS) says the SHA-1 is not suitable for general-purpose digital signature applications (as specified in FIPS 186-3) that require 112 bits of security. In the case of digital signatures, SHA-1 does not provide the 112 bits of collision resistance needed to achieve the security strength.
NOTE: This fix may impact the upgrade.
Changed in glance: | |
importance: | Undecided → Low |
assignee: | nobody → Fei Long Wang (flwang) |
Changed in glance: | |
importance: | Low → Medium |
Changed in glance: | |
milestone: | none → kilo-2 |
description: | updated |
Changed in glance: | |
status: | Fix Committed → Fix Released |
Changed in glance: | |
milestone: | kilo-2 → 2015.1.0 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/80178
Review: https:/