cassandra-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jason Brown (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CASSANDRA-14064) Allow using file based certificates instead of keystores
Date Tue, 21 Nov 2017 12:49:00 GMT

    [ https://issues.apache.org/jira/browse/CASSANDRA-14064?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16260668#comment-16260668
] 

Jason Brown commented on CASSANDRA-14064:
-----------------------------------------

Note: the {{KeyProvider}}, used on the encryption-at-rest path, is a step toward this

> Allow using file based certificates instead of keystores
> --------------------------------------------------------
>
>                 Key: CASSANDRA-14064
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-14064
>             Project: Cassandra
>          Issue Type: New Feature
>          Components: Streaming and Messaging
>            Reporter: Stefan Podkowinski
>            Assignee: Stefan Podkowinski
>             Fix For: 4.x
>
>
> The requirement of having to use a secure archive (keystore) for your certificates and
keys is not very common outside the Java ecosystem. Most servers will accept individual certificate
and key files and will come with instructions how to generate those using openssl. This should
also be an option for Cassandra for users who see no reason in additionally having to deal
with keystores.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org


Mime
View raw message