Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

support for disabling cryptographic algorithms deemed insecure #73

Open
dun opened this issue Jan 15, 2020 · 0 comments
Open

support for disabling cryptographic algorithms deemed insecure #73

dun opened this issue Jan 15, 2020 · 0 comments
Labels
feature

Comments

@dun
Copy link
Owner

dun commented Jan 15, 2020

Add support for disabling cryptographic algorithms deemed insecure in order to protect against downgrade attacks. This would allow sites to selectively disable algorithms having a low security margin, or quickly respond to new cryptographic attacks against such an algorithm. This option should be set in the configuration file (#58).

While an application could use munge_ctx_set() to override the default algorithms used to encode a credential, most probably don't. Likewise, an application could, in theory, reject a decoded credential that used a particular algorithm (queried via munge_ctx_get()), but in practice, that's unlikely to happen.

The impetus for this feature is the recent announcement that SHA-1 is a Shambles. While the HMAC construct protects against such length extension attacks, attacks always get better.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dun