[jira] [Updated] (TS-2984) Support OpenSSL's SSL_CONF API

Mon, 04 Aug 2014 06:18:28 -0700 

     [ 
https://issues.apache.org/jira/browse/TS-2984?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Wei Sun updated TS-2984:
------------------------

    Description: 
The use case is to add a configurable server side supported elliptic curves 
when serving ECDSA certificate per security's needs. To achieve this, we expect 
to support OpenSSL's SSL_CONF API in ATS. This also allows a flexible 
configuration of OpenSSL parameters without the need of implementing additional 
directives when new features are added to OpenSSL. Note that OpenSSL 1.0.2 or 
above is required to support this.

More details of configuration file commands can be found from 
https://www.openssl.org/docs/ssl/SSL_CONF_cmd.html#SUPPORTED_CONFIGURATION_FILE_COM

  was:
The use case is to add a configurable server side supported elliptic curves 
when serving ECDSA certificate per security's needs. To achieve this, we expect 
to support OpenSSL's SSL_CONF API in ATS. This also allows a flexible 
configuration of OpenSSL parameters without the need of implementing additional 
directives when new features are added to OpenSSL. Note that OpenSSL 1.0.2 is 
required to support this.

More details of configuration file commands can be found from 
https://www.openssl.org/docs/ssl/SSL_CONF_cmd.html#SUPPORTED_CONFIGURATION_FILE_COM


> Support OpenSSL's SSL_CONF API
> ------------------------------
>
>                 Key: TS-2984
>                 URL: https://issues.apache.org/jira/browse/TS-2984
>             Project: Traffic Server
>          Issue Type: Improvement
>          Components: SSL
>            Reporter: Wei Sun
>              Labels: yahoo
>
> The use case is to add a configurable server side supported elliptic curves 
> when serving ECDSA certificate per security's needs. To achieve this, we 
> expect to support OpenSSL's SSL_CONF API in ATS. This also allows a flexible 
> configuration of OpenSSL parameters without the need of implementing 
> additional directives when new features are added to OpenSSL. Note that 
> OpenSSL 1.0.2 or above is required to support this.
> More details of configuration file commands can be found from 
> https://www.openssl.org/docs/ssl/SSL_CONF_cmd.html#SUPPORTED_CONFIGURATION_FILE_COM



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Reply via email to