[jira] [Commented] (NIFI-6708) Improve DSA/El Gamal PGP compatibility issues

Thu, 22 Apr 2021 12:52:09 -0700 


    [ 
https://issues.apache.org/jira/browse/NIFI-6708?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17329380#comment-17329380
 ] 

ASF subversion and git services commented on NIFI-6708:
-------------------------------------------------------

Commit 92bdc23adbe867c93f6e43c6665e84108d743fb2 in nifi's branch 
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=92bdc23 ]

NIFI-8251 Added EncryptContentPGP and DecryptContentPGP Processors

- Added PGPPrivateKeyService and PGPPublicKeyService interfaces with standard 
implementations
- NIFI-7396 EncryptContentPGP writes encryption metadata attributes
- NIFI-6708 Controller Services support ElGamal Public and Private Keys
- NIFI-5346 Controller Services support Keyring Files and ASCII Key properties
- NIFI-5335 Controller Services support multiple public or private keys from 
keyrings
- NIFI-2983 DecryptContentPGP finds and decrypts Encrypted Data Packets 
regardless of signing
- NIFI-1694 Controller Services support individual key files or keyrings

NIFI-8251 Refactored Public Key ID Property to Public Key Search

NIFI-8251 Corrected handling of multiple Encrypted Data packets in 
DecryptContentPGP

- Added unit tests for encryption and decryption with both password-based and 
public key
- Added PGP NAR dependencies to nifi-assembly

Signed-off-by: Nathan Gough <thena...@gmail.com>

This closes #4842.


> Improve DSA/El Gamal PGP compatibility issues
> ---------------------------------------------
>
>                 Key: NIFI-6708
>                 URL: https://issues.apache.org/jira/browse/NIFI-6708
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework, Extensions
>    Affects Versions: 1.9.2
>            Reporter: Andy LoPresto
>            Assignee: David Handermann
>            Priority: Major
>              Labels: dsa, el-gamal, encryption, gpg, pgp, security
>
> Some users have complained about an inability to use DSA GPG keys in the 
> {{EncryptContent}} processor. While DSA keys are only used for signatures, 
> they are frequently paired with El Gamal encryption keys in GnuPG. I am 
> exploring the OpenPGP implementation via Bouncy Castle to see if there are 
> improvements we can make. 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to