Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5586

Add capability to generate ECDSA keys to TLS Toolkit

    XMLWordPrintableJSON

    Details

      Description

      The TLS Toolkit should be able to generate ECDSA keys to enable NiFi to support ECDSA cipher suites.

      Currently, ECDSA keys can be manually generated using external tools and loaded into a keystore and truststore that are compatible with NiFi.

      keytool -genkeypair -alias ec -keyalg EC -keysize 256 -sigalg SHA256withECDSA -validity 365 -storetype JKS -keystore ec-keystore.jks -storepass passwordpassword
      keytool -export -alias ec -keystore ec-keystore.jks -file ec-public.pem
      keytool -import -alias ec -file ec-public.pem -keystore ec-truststore.jks -storepass passwordpassword
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                alopresto Andy LoPresto
              • Votes:
                1 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: