Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-9320

Enable TLSv1.3 by default and disable some of the older protocols

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.6.0
    • security

    Description

      KAFKA-7251 added support for TLSv1.3. We should include this in the list of protocols that are enabled by default. We should also disable some of the older protocols that are not secure. This change requires a KIP.

      Attachments

        1. report.txt
          43 kB
          Nikolay Izhikov

        Issue Links

          fixes

          Test - A new unit, integration or system test. KAFKA-9943 Enable TLSv.1.3 in system tests "run all" execution.

          • Major - Major loss of function.
          • Resolved
          is related to

          Improvement - An improvement or enhancement to an existing feature or task. KAFKA-9460 Enable TLSv1.2 by default and disable all others protocol versions

          • Major - Major loss of function.
          • Resolved
          relates to

          Test - A new unit, integration or system test. KAFKA-9319 Run some system tests using TLSv1.3

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link Dev-list discussion

          Web Link GitHub Pull Request #8695

          Web Link KIP-573

          mentioned in

          Page Loading...

          Activity

            People

              nizhikov Nikolay Izhikov
              rsivaram Rajini Sivaram
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: