[Openstack-security] [Bug 1369487] Re: NIST: increase RSA key length to 2048 bit
Joe Gordon
1369487 at bugs.launchpad.net
Mon Sep 22 16:44:14 UTC 2014
** Changed in: nova
Milestone: None => juno-rc1
** Changed in: nova
Importance: Undecided => Medium
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1369487
Title:
NIST: increase RSA key length to 2048 bit
Status in OpenStack Compute (Nova):
In Progress
Status in OpenStack Security Advisories:
Won't Fix
Bug description:
According to NIST 800-131A, RSA key lenght for digital signature must
>= 2048 bit.
In crypto.py, we use 1024 bit as the default key length to generate
cert file, and does not specify any larger number to override the
default value when utilizing it.
def generate_x509_cert(user_id, project_id, bits=1024):
Need to increase the default key length to 2048 bit.
To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1369487/+subscriptions
More information about the Openstack-security
mailing list