[KUDU-1921] Add ability for clients to require authentication/encryption - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 1.3.0
Fix Version/s: 1.16.0
Component/s: client, security
Labels:
- roadmap-candidate

Description

Currently, the clients always operate in "optional" mode for authentication and encryption. This means that they are vulnerable to downgrade attacks by a MITM. We should provide APIs so that clients can be configured to prohibit downgrade when connecting to clusters they know to be secure.

Attachments

Activity

People

Assignee:: Attila Bukor

Reporter:: Todd Lipcon

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 09/Mar/17 22:59

Updated:: 20/Jun/23 02:43

Resolved:: 08/Nov/21 18:14