Changing the subject for this discussion with the JIRA ticket now. Dinesh, when you say PEM and JKS formats simultaneously, do you mean that for client vs internnode ssl we should be able to use different formats OR beyond that within particular encryption options have a combination - PEM based private keys and JKS based truststore?
Thanks Maulin On Mon, Oct 11, 2021 at 12:02 PM Maulin Vasavada <maulin.vasav...@gmail.com> wrote: > Thanks all for your responses. So I'll give back the CEP number (if I > can). > > For Dinesh's comment, I think we can take up in the DISCUSS thread for the > JIRA ticket that I'll start. I will make sure I understand his comment and > resolve it correctly. > > Thanks > Maulin > > On Mon, Oct 11, 2021 at 8:47 AM Dinesh Joshi <djos...@icloud.com.invalid> > wrote: > >> This could be just an enhancement jira. No need for a CEP. >> >> I think this would be a fine addition to Cassandra. Please ensure that we >> can support both PEM as well as the current JKS simultaneously. >> >> Dinesh >> >> > On Oct 11, 2021, at 3:06 AM, Stefan Miklosovic < >> stefan.mikloso...@instaclustr.com> wrote: >> > >> > I agree with Benedict, this does not need to have its own CEP. >> > >> > In the "approach" section to-be-discussed CEP-17, I clearly see this >> > is building on top of what is already in so I do not think this needs >> > yet another CEP to materialize. >> > >> > Regards >> > >> >> On Mon, 11 Oct 2021 at 12:00, bened...@apache.org <bened...@apache.org> >> wrote: >> >> >> >> Hi Maulin, >> >> >> >> This sounds fine to me, though I don’t consider myself well versed in >> these system details. >> >> >> >> I have a meta comment though: I think this could easily have been a >> Jira with a DISCUSS thread brought to the list. The CEP process is (in my >> opinion) for complex decisions that needs broad consent from the community, >> whereas this seems like a straightforward feature we might want to >> advertise to ensure others have an opportunity to offer their expertise and >> opinions on. >> >> >> >> >> >> From: Maulin Vasavada <maulin.vasav...@gmail.com> >> >> Date: Monday, 11 October 2021 at 06:54 >> >> To: dev@cassandra.apache.org <dev@cassandra.apache.org> >> >> Subject: [DISCUSS] CEP-17: Add support for PEM based key material for >> SSL >> >> Hi all, >> >> >> >> I would like to start this discussion thread for the CEP-17 >> >> < >> https://cwiki.apache.org/confluence/display/CASSANDRA/CEP-17%3A+Add+support+for+PEM+based+key+material+for+SSL >> >. >> >> I think it would be a great addition to support a commonly used format >> for >> >> private keys and trusted certificates for SSL configurations. >> >> >> >> Thank you. >> >> Maulin >> > >> > --------------------------------------------------------------------- >> > To unsubscribe, e-mail: dev-unsubscr...@cassandra.apache.org >> > For additional commands, e-mail: dev-h...@cassandra.apache.org >> > >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: dev-unsubscr...@cassandra.apache.org >> For additional commands, e-mail: dev-h...@cassandra.apache.org >> >>
