[Openstack-security] [openstack/glance] SecurityImpact review request change I9236cc85f4e9881ac1aa35d69bc6761a59c1b6c8
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Sun Jan 11 20:13:03 UTC 2015
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/80178
Log:
commit 2bba25f4627bd641336692e4ce6e85d103bc8381
Author: Fei Long Wang <flwang at cn.ibm.com>
Date: Thu Mar 13 13:30:05 2014 +0800
Ensure digital signatures are a minimum of SHA2
It would be great to enhance Glance to use minimum of SHA2
to do digital signature for FIPS compliance.
In FIPS(FEDERAL INFORMATION PROCESSING STANDARDS) says the
SHA-1 is not suitable for general-purpose digital signature
applications (as specified in FIPS 186-3) that require 112
bits of security. In the case of digital signatures, SHA-1
does not provide the 112 bits of collision resistance needed
to achieve the security strength.
DocImpact
UpgradeImapact
SecurityImpact
Closes-Bug: #1288545
Change-Id: I9236cc85f4e9881ac1aa35d69bc6761a59c1b6c8
More information about the Openstack-security
mailing list