[QPIDJMS-150] Scram SHA SASL support for authentication - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.9.0
Component/s: qpid-jms-client
Labels:
None

Description

The SCRAM SHA-1 and 256 SASL mechanisms https://tools.ietf.org/html/rfc5802 offer better security than older SASL implementations. In particular the authentication information stored in the authentication database is not sufficient to impersonate the client if the database were to be stolen.

(The Java Broker already supports these mechanisms. The intention is to switch to recommend SCRAM instead of CRAM-MD5 shortly. One barrier to making this switch is the absence of support in the client).

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

0001-QPIDJMS-150-Add-support-for-SASL-SCRAM-SHA1-256-RFC-.patch
21/Feb/16 17:45
32 kB
Keith Wall

Activity

People

Assignee:: Robbie Gemmell

Reporter:: Keith Wall

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 16/Feb/16 10:10

Updated:: 02/Oct/19 19:21

Resolved:: 23/Feb/16 13:02