Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-9430

Avoid using SHA1 for HSM public key dummy certificates

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 7.4.3
    • Component/s: None
    • Labels:

      Description

      We should avoid using SHA1 for internal HSM operations, even if it's supported when selected by user.

      Specifically KeyStoreTools.generateRSA should not use SHA1 for the dummy cert

      We can do that by adding a NOSHA1 list in AlgorothmTools.

        Attachments

          Activity

            People

            Assignee:
            tomas Tomas Gustavsson
            Reporter:
            tomas Tomas Gustavsson
            Verified by:
            Samuel Lidén Borell
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 15 minutes Original Estimate - 15 minutes
                15m
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 30 minutes
                30m