[wildfly-dev] Specify algorithm and key-size for password vault in WildFly?

Lin Gao lgao at redhat.com
Mon May 16 22:23:25 EDT 2016


There is a Jira: WFLY-6569[1] open about password vault, which asks for specifying KEY_SIZE to encrypt the sensitive data in vault data file.

The key size is bound up with the algorithm it uses, currently the vault.sh|.bat only allows AES(no place to specify other algorithm) to encrypt sensitive data, and uses key size of 128. 

Alougth we can specify the key size after doing some fix, it needs extra set-up work for some JDKs(like Oracle JDKs) to be able to use key size of 192 and 256 for AES. This leads to that only specifying the key size is not so worthy.

Maybe we should specify both algorithm and key size to encrypt the vault data?

[1] https://issues.jboss.org/browse/WFLY-6569
Lin Gao
Software Engineer
JBoss by Red Hat

More information about the wildfly-dev mailing list