<div dir="ltr"><br><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, Sep 18, 2013 at 9:40 PM, Bruno Oliveira <span dir="ltr"><<a href="mailto:bruno@abstractj.org" target="_blank">bruno@abstractj.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I guess that what do you want is PBKDF2 aka password key derivation or<br>
maybe hashing, right? </blockquote><div><br></div><div>yep, exactly</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">That's exactly what we are trying to achieve with<br>
<div class="im">"AGSEC-XX: Provide easy to use cryptography interface"<br></div></blockquote><div><br></div><div>OK</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div class="im">
<br>
</div>I can't see any reasons to keep that jira on AGSEC, but it seems just a<br></blockquote><div><br></div><div>Ok, at some point you said all 'sec related issues' should go to AGSEC, otherwise hard for you to track.</div>
<div>I am fine in not having it in AGSEC, if you prefer the issue to be on AGPUSH instead.</div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
duplicated jira or specifics to AGPUSH. At the end of the day, AGSEC<br>
will solve UnifiedPush, SimplePush and other issues on AeroGear, I hope.<br>
Please read carefully the proposal and let me know.<br>
<div class="HOEnZb"><div class="h5"><br>
Matthias Wessendorf wrote:<br>
> No it has nothing to do with an iOS device at all. It's really for the<br>
> UnifiedPush Server only.<br>
> For iOS notification you need a certificate and a passphrase:<br>
> <a href="https://github.com/aerogear/aerogear-unifiedpush-server#ios-variant" target="_blank">https://github.com/aerogear/aerogear-unifiedpush-server#ios-variant</a><br>
><br>
> The passphrase is stored in plain text on the server, I filed this<br>
> ticket for adding hashing/salting.<br>
> <a href="https://issues.jboss.org/browse/AGPUSH-210" target="_blank">https://issues.jboss.org/browse/AGPUSH-210</a><br>
><br>
> Since this is a 'security' related item I created the AGSEC-89 for the<br>
> real work, and keeping the AGPUSH item as reference only.<br>
<br>
</div></div><span class="HOEnZb"><font color="#888888">--<br>
abstractj<br>
<br>
<br>
</font></span><br>_______________________________________________<br>
aerogear-dev mailing list<br>
<a href="mailto:aerogear-dev@lists.jboss.org">aerogear-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/aerogear-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/aerogear-dev</a><br></blockquote></div><br><br clear="all"><div><br></div>-- <br>Matthias Wessendorf <br>
<br>blog: <a href="http://matthiaswessendorf.wordpress.com/" target="_blank">http://matthiaswessendorf.wordpress.com/</a><br>sessions: <a href="http://www.slideshare.net/mwessendorf" target="_blank">http://www.slideshare.net/mwessendorf</a><br>
twitter: <a href="http://twitter.com/mwessendorf" target="_blank">http://twitter.com/mwessendorf</a>
</div></div>