[jboss-jira] [JBoss JIRA] (ELY-145) Digest-MD5 - missing rspauth and bad encryption key
Jan Kalina (JIRA)
issues at jboss.org
Fri Feb 6 05:07:49 EST 2015
Jan Kalina created ELY-145:
------------------------------
Summary: Digest-MD5 - missing rspauth and bad encryption key
Key: ELY-145
URL: https://issues.jboss.org/browse/ELY-145
Project: WildFly Elytron
Issue Type: Bug
Reporter: Jan Kalina
Assignee: Jan Kalina
* In Digest-MD5 implementation is missing last step of authetication - generating and checking of rspauth.
* Keys generated for encrypted communication in auth-conf are different from keys generated by JDK implementation - in their generating is bug. (keys are derivated from H(A1) by RFC, so must be identical in all implementations.)
--
This message was sent by Atlassian JIRA
(v6.3.11#6341)
More information about the jboss-jira
mailing list