Loading...

XML

Word

Printable

Type: Epic
Resolution: Done
Priority: Major
Fix Version/s: 1.1.0.CR2
Affects Version/s: 1.0.0.GA
Component/s: Qpid Dispatch Router
Labels:
- requirement

Epic Name:
ToDo fill in Epic name
Affects:

Documentation (Ref Guide, User Guide, etc.)
Epic Status:
Done
GSS Priority:
Hierarchy Progress:
0
Hierarchy Progress Bar:

0% 0%
Target Release:

1.1.0.GA

SFDC Cases Links:
SFDC Cases Counter:

A security conscious user may wish to restrict the set of permitted TLS versions and ciphers to a minimal set of those that are currently deemed secure.

There are various recommendations online what the secure set currently is. Maybe Red Hat has its own list, or there is some third party with a list. This recommendation can be mentioned in documentation.

This feature would be especially useful if the user is in control of both server and clients (so there are not compatibility considerations). Then there is really no reason not to go for the current best. The config should allow the user to set this up.

is related to

ENTMQIC-1982 Qdmanage query doesn't show default ciphers of sslProfile

Closed

relates to

ENTMQIC-72 Connections between clients and router or a router and another router should be able to be secured utilizing SSLTLS/SASL to encrypt the connections.

Closed

AMQDOC-2707 REQ: Doc the set of allowed TLS versions and ciphers is configurable

Closed

Assignee:: Ganesh Murthy

Reporter:: Jiri Daněk

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2017/07/21 3:38 AM

Updated:: 2023/10/07 5:21 AM

Resolved:: 2018/03/05 10:13 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates