[
https://issues.apache.org/jira/browse/QPID-8367?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17019668#comment-17019668
]
ASF GitHub Bot commented on QPID-8367:
--------------------------------------
bickelj commented on issue #44: QPID-8367 [Broker-J] Trusted CA revocation list
URL: https://github.com/apache/qpid-broker-j/pull/44#issuecomment-576382625
> java API does not allow to generate all required test resources
programmatically. Thus, the external utilities like openssl or NSS certutil has
to be used
The use of SSLContext (part of Java API) in new TLS-related method
signatures combined with alternative providers from BouncyCastle at test-time
can help.
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
> [Broker-J] Trusted CA revocation list
> -------------------------------------
>
> Key: QPID-8367
> URL: https://issues.apache.org/jira/browse/QPID-8367
> Project: Qpid
> Issue Type: Improvement
> Components: Broker-J
> Reporter: Tomas Vavricka
> Priority: Major
> Fix For: qpid-java-broker-8.0.0
>
>
> Qpid Broker-J supports custom CA. When in place clients then can connect with
> certificate signed by custom CA.
> However there is no way to reject compromised certificates. Implementation of
> revocation list for custom CA can solve this issue.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
