qpid-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rob Godfrey (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (QPID-6538) [Java Broker] Allow TrustStores to be used to distribute public keys to clients
Date Sun, 31 May 2015 23:57:17 GMT

    [ https://issues.apache.org/jira/browse/QPID-6538?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14566838#comment-14566838

Rob Godfrey commented on QPID-6538:

[~k-wall] : You are quite correct, for reasons I cannot explain the original check-in only
recorded the peer certificate in 0-10 connections.  I have made a further change so that the
certificates are captured on all protocols. 

> [Java Broker] Allow TrustStores to be used to distribute public keys to clients
> -------------------------------------------------------------------------------
>                 Key: QPID-6538
>                 URL: https://issues.apache.org/jira/browse/QPID-6538
>             Project: Qpid
>          Issue Type: Improvement
>          Components: Java Broker
>            Reporter: Rob Godfrey
>            Assignee: Rob Godfrey
> In order perform end to end encryption of messages, a system needs a way of distributing
public keys / certificates.  We can use the trust stores in the broker as a store of public
keys, and add the ability to trust stores to represent themselves as a message source whereby
a consumer connecting to the message source is sent a message containing all of the public
key certificates currently held in the trust store.
> Additionally we can collect public keys used in SSL client auth, and store these in a
designated trust store.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org

View raw message