[HADOOP-14246] Authentication Tokens should use SecureRandom instead of Random and 256 bit secrets - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.9.0
Fix Version/s: 2.9.0, 3.0.0-alpha4, 2.8.4, 2.7.6
Component/s: security
Labels:
None

Target Version/s:

2.9.0, 3.0.0-alpha4
Hadoop Flags:

Reviewed

Description

RandomSignerSecretProvider and ZKSignerSecretProvider currently use a long generated by Random (which is then converted to a String and is 160 bits) for secrets.

We should improve this to use 256 bit secrets generated by SecureRandom.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-14246.001.patch
27/Mar/17 18:23
16 kB
Robert Kanter

Activity

People

Assignee:: Robert Kanter

Reporter:: Robert Kanter

Votes:: 0 Vote for this issue

Watchers:: 10 Start watching this issue

Dates

Created:: 27/Mar/17 18:19

Updated:: 04/Jan/18 23:51

Resolved:: 12/Apr/17 18:24