[
https://issues.apache.org/jira/browse/CALCITE-1480?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Josh Elser updated CALCITE-1480:
--------------------------------
Description:
CALCITE-1538 added some support to enable TLS functionality with Avatica.
We should make sure we add the ability to disable certain ciphersuites and
algorithms which have been proven to be insecure since they were originally
implemented.
was:
We should expose the support for users to configure the Avatica server to
operate using TLS.
Some thoughts on what would be minimally acceptable:
* Configure one-way or two-way TLS
* Ability to specify ciphers/algorithms to disallow (prevent the use of
weak/known-insecure parameters)
This should all be easily attainable through the Jetty APIs.
> Support specifying ciphersuites and algorithms for TLS
> ------------------------------------------------------
>
> Key: CALCITE-1480
> URL: https://issues.apache.org/jira/browse/CALCITE-1480
> Project: Calcite
> Issue Type: New Feature
> Components: avatica
> Reporter: Josh Elser
> Priority: Major
>
> CALCITE-1538 added some support to enable TLS functionality with Avatica.
> We should make sure we add the ability to disable certain ciphersuites and
> algorithms which have been proven to be insecure since they were originally
> implemented.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
