Chapter 18. Identity in OpenStack Security Guide - havana
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Medium
|
Anne Gentle |
Bug Description
This chapter says "The Identity service could alternatively be configured to provide UUID tokens which are significantly shorter but may be less secure depending on your specific deployment model."
There's not meant to be any difference in security between using PKI versus UUID tokens. PKI tokens are supposed to save on network traffic and keystone server CPU (although I'm not sure that they do). Choosing PKI or UUID isn't a question of PKI is more secure. They're the same.
-------
Built: 2013-11-21T20:48:44 00:00
git SHA: 216e166bd12b79d
URL: http://
source File: file:/home/
xml:id: ch024_authentic
tags: | added: sec-guide |
Changed in openstack-manuals: | |
status: | New → Triaged |
importance: | Undecided → Medium |
Changed in openstack-manuals: | |
assignee: | nobody → Anne Gentle (annegentle) |
Changed in openstack-manuals: | |
status: | In Progress → Fix Released |
Requested that the Security Guide original authors triage this doc bug.