Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5586

Add capability to generate ECDSA keys to TLS Toolkit

    XMLWordPrintableJSON

Details

    Description

      The TLS Toolkit should be able to generate ECDSA keys to enable NiFi to support ECDSA cipher suites.

      Currently, ECDSA keys can be manually generated using external tools and loaded into a keystore and truststore that are compatible with NiFi.

      keytool -genkeypair -alias ec -keyalg EC -keysize 256 -sigalg SHA256withECDSA -validity 365 -storetype JKS -keystore ec-keystore.jks -storepass passwordpassword
      keytool -export -alias ec -keystore ec-keystore.jks -file ec-public.pem
      keytool -import -alias ec -file ec-public.pem -keystore ec-truststore.jks -storepass passwordpassword
      

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              alopresto Andy LoPresto
              Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: