[jira] [Updated] (QPIDJMS-150) Scram SHA SASL support for authentication

Keith Wall (JIRA) Sat, 20 Feb 2016 10:15:07 -0800

     [ 
https://issues.apache.org/jira/browse/QPIDJMS-150?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Keith Wall updated QPIDJMS-150:
-------------------------------
    Attachment: 0001-QPIDJMS-150-Support-for-SASL-SCRAM-SHA1-256.patch

Working implementation of SCRAM SHA SASL 1 and 256.
Tested against Java Broker.

> Scram SHA SASL support for authentication
> -----------------------------------------
>
>                 Key: QPIDJMS-150
>                 URL: https://issues.apache.org/jira/browse/QPIDJMS-150
>             Project: Qpid JMS
>          Issue Type: Improvement
>          Components: qpid-jms-client
>            Reporter: Keith Wall
>         Attachments: 0001-QPIDJMS-150-Support-for-SASL-SCRAM-SHA1-256.patch
>
>
> The SCRAM SHA-1 and 256 SASL mechanisms https://tools.ietf.org/html/rfc5802 
> offer better security than older SASL implementations. In particular the 
> authentication information stored in the authentication database is not 
> sufficient to impersonate the client if the database were to be stolen.
> (The Java Broker already supports these mechanisms. The intention is to 
> switch to recommend SCRAM instead of CRAM-MD5 shortly.  One barrier to making 
> this switch is the absence of support in the client).



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (QPIDJMS-150) Scram SHA SASL support for authentication

Reply via email to