Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
Description
In order perform end to end encryption of messages, a system needs a way of distributing public keys / certificates. We can use the trust stores in the broker as a store of public keys, and add the ability to trust stores to represent themselves as a message source whereby a consumer connecting to the message source is sent a message containing all of the public key certificates currently held in the trust store.
Additionally we can collect public keys used in SSL client auth, and store these in a designated trust store.