[NIFI-7122] Refactor existing KDF implementations to use SecureHasher interface - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.11.1
Fix Version/s: 1.12.0
Component/s: Core Framework, Security
Labels:
- hashing
- kdf
- refactor
- security

Epic Link:
Improve secure hasher architecture

Description

The existing KDF implementations (bcrypt, scrypt, and PBKDF2) in the *CipherProvider classes should be refactored to provide algorithm-specific *SecureHasher implementations and then have the hashing logic delegated from the respective cipher provider objects to the hasher.

Attachments

Issue Links

depends upon

NIFI-7125 Extend SecureHasher interface to provide implementation-specific "full hash output" string representation

Resolved

fixes

NIFI-1467 Provide Bcrypt salt generation code

Resolved

is depended upon by

NIFI-7397 Detect encryption metadata attributes on incoming flowfile and use for decryption

Resolved

is required by

NIFI-7324 Introduce controller service for KDFs

Resolved

links to

GitHub Pull Request #4228

GitHub Pull Request #4421

(1 links to)

Sub-Tasks

There are no Sub-Tasks for this issue.

Activity

People

Assignee:: Margot Tien

Reporter:: Andy LoPresto

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 10/Feb/20 23:19

Updated:: 08/Apr/21 13:06

Resolved:: 24/Jul/20 20:05

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

3h 20m

Include sub-tasks