[Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit
Thierry Carrez
thierry.carrez+lp at gmail.com
Wed Oct 1 07:44:35 UTC 2014
** Changed in: nova
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1369487
Title:
NIST: increase RSA key length to 2048 bit
Status in OpenStack Compute (Nova):
Fix Released
Status in OpenStack Security Advisories:
Won't Fix
Bug description:
According to NIST 800-131A, RSA key lenght for digital signature must
>= 2048 bit.
In crypto.py, we use 1024 bit as the default key length to generate
cert file, and does not specify any larger number to override the
default value when utilizing it.
def generate_x509_cert(user_id, project_id, bits=1024):
Need to increase the default key length to 2048 bit.
To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1369487/+subscriptions
More information about the Openstack-security
mailing list