Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-4219

Verify public keys before cert issuance

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.9.0
    • Component/s: None
    • Labels:
      None
    • Epic Link:
    • Sprint:
      6.9.0 Sprint 3

      Description

      Purpose:

      • Verify public keys sent in CSRs before issuing certificates.
      • Perform public key validation (RSA and ECC) according to specs?
      • Check to prevent certification of weak Debian keys.
      • Make check plug-in architecture so customer can implement own checks.

      Goal:

      • Satisfy one of our oldest and biggest customers.
      • Improving possibility of security policy enforcement further.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              anjakobs Andres Jakobs
              Reporter:
              tomas Tomas Gustavsson
              Verified by:
              Mike Agrenius Kushner
              Votes:
              1 Vote for this issue
              Watchers:
              7 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: