[Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit
Thierry Carrez
thierry.carrez+lp at gmail.com
Fri Sep 19 13:53:13 UTC 2014
** Information type changed from Public Security to Public
** Tags added: security
** Changed in: ossa
Status: Incomplete => Won't Fix
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1369487
Title:
NIST: increase RSA key length to 2048 bit
Status in OpenStack Compute (Nova):
In Progress
Status in OpenStack Security Advisories:
Won't Fix
Bug description:
According to NIST 800-131A, RSA key lenght for digital signature must
>= 2048 bit.
In crypto.py, we use 1024 bit as the default key length to generate
cert file, and does not specify any larger number to override the
default value when utilizing it.
def generate_x509_cert(user_id, project_id, bits=1024):
Need to increase the default key length to 2048 bit.
To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1369487/+subscriptions
More information about the Openstack-security
mailing list