Difference between revisions of "Security/Juno/Barbican"
(→Libraries) |
(→Hashing Algorithms) |
||
Line 21: | Line 21: | ||
! Algorithm !! Purpose !! Configurable !! Implementation !! Details !! Source | ! Algorithm !! Purpose !! Configurable !! Implementation !! Details !! Source | ||
|- | |- | ||
− | || || || || || | + | | sha256 || HKDF || Yes || PyCrypto || |
+ | * Used as the default algorithm for HMAC-based Key Derivation Function (HKDF) utility method. | ||
+ | * Caller can specify a different hashing algorithm. | ||
+ | * TODO - what uses this utility method in Barbican, and do any override the default algorithm? | ||
+ | || | ||
+ | * barbican/openstack/common/crypto/utils.py:HKDF | ||
+ | |- | ||
+ | | sha256 || symmetric crypto signing || Yes || PyCrypto || | ||
+ | * Used as the default signing (HMAC) algorithm for symmetric crypto utility method. | ||
+ | * Caller can specify a different hashing algorithm. | ||
+ | * TODO - what uses this utility method in Barbican, and do any override the default algorithm? | ||
+ | || | ||
+ | * barbican/openstack/common/crypto/utils.py:SymmetricCrypto | ||
|} | |} | ||
Revision as of 19:05, 25 April 2014
This page documents security related details for the Barbican project in the OpenStack Juno release.
Contents
Implemented Crypto
Used Crypto
Libraries
- PyCrypto
Encryption Algorithms
Algorithm | Purpose | Configurable | Implementation | Details | Source |
---|---|---|---|---|---|
Hashing Algorithms
Algorithm | Purpose | Configurable | Implementation | Details | Source |
---|---|---|---|---|---|
sha256 | HKDF | Yes | PyCrypto |
|
|
sha256 | symmetric crypto signing | Yes | PyCrypto |
|
|