tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Filip Hanik \(mailing lists\)" <devli...@hanik.com>
Subject RE: Signing and Encrypting messages using Apache tribes
Date Tue, 01 May 2012 15:31:32 GMT


> -----Original Message-----
> From: Madhav Bhargava [mailto:unmarshall@gmail.com]
> Sent: Monday, April 30, 2012 4:16 PM
> To: users@tomcat.apache.org
> Subject: Signing and Encrypting messages using Apache tribes
> 
> Hi All,
> 
> We use apache tribes for inter node communication via multicast. For
> securing inter node communication two things are required:
> 
> 1. Establishing the identity of a node as valid who is sending the
> message
> 2. Encrypting selective messages which are sensitive in nature.
> 
> This topic was raised some time back (
> http://tomcat.10.n6.nabble.com/Securing-Tomcat-cluster-communication-
> td1973779.html
>  )
> 
> It is recommended that encryption/decryption of messages be done using a
> custom interceptor or using a stunnel, the former approach being the
> preferred approach. 
[Filip Hanik] 
Correct, using an interceptor you can do that. That is the easiest way. You can also use it
for membership as membership messages carry a payload.

It has also being mentioned that the option
> SEND_OPTIONS_SECURE has not been implemented. This was in 2011, how its
> 2012 - Has this been implemented now?
[Filip Hanik]
No.
 
> 
> What do you suggest is the best way using tribes to sign messages - via
> another interceptor 
[Filip Hanik] 
Yes, use an interceptor


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message