[DERBY-2356] Make SSL server authentication optional - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 10.3.1.4
Fix Version/s: 10.3.1.4
Component/s: Network Client, Network Server
Labels:
None

Bug behavior facts:

Security

Description

Default SSL behaviour is to require serer authentication. For a database application this is not as important as it is for web browsers and also creates som extra hassle for the user/application programmer. Since the main objective for SSL in Derby is encryption on the wire, server authentication should be optional (the same way client authentication is).

This also creates some symmetry which can be exploited to simplify the user interfce somewhat. This improvement to ~~DERBY-2108~~ is described in the attached functional specification. See the attachment for details.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SSLFuncSpect.txt
19/Feb/07 14:21
5 kB
Bernt Johnsen
derby-2356-v1.diff
20/Feb/07 13:21
21 kB
Bernt Johnsen
derby-2356-v1.stat
20/Feb/07 13:21
0.7 kB
Bernt Johnsen
derby-2356-v2.diff
23/Feb/07 12:40
23 kB
Bernt Johnsen
derby-2356-v2.stat
23/Feb/07 12:40
0.7 kB
Bernt Johnsen
SSLFuncSpect.txt
23/Feb/07 12:40
6 kB
Bernt Johnsen
derby-2356-v3.diff
26/Feb/07 09:23
23 kB
Bernt Johnsen

Issue Links

is related to

DERBY-2108 Implement SSL/TLS communication between client and server

Closed

relates to

DERBY-2363 Add initial handshake on connection setup to determine server's required ssl support level and avoid client side attribute settings.

Open

Activity

People

Assignee:: Bernt Johnsen

Reporter:: Bernt Johnsen

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 19/Feb/07 14:21

Updated:: 30/Jun/09 00:14

Resolved:: 26/Feb/07 19:05