Vikas Kumar created RANGER-5313:
-----------------------------------
Summary: Support FIPS compliant crypto algorithm to
encrypt/decrypt for service password
Key: RANGER-5313
URL: https://issues.apache.org/jira/browse/RANGER-5313
Project: Ranger
Issue Type: New Feature
Components: admin
Reporter: Vikas Kumar
Assignee: Vikas Kumar
Current implementation uses following algorithm to encrypt/decrypt password
before storing into DB:
{code:java}
PBEWITHHMACSHA512ANDAES_128 , PBEWithMD5AndDES{code}
These algorithm are weak.
Requirement is to start supporting *PBKDF2WithHmacSHA256* for FIPS env.
As part of this feature, Service should not stop supporting existing algorithms
but it should support *PBKDF2WithHmacSHA256* as well if configured.
Also, it should not break any existing behaviour.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
