[AG-TECH] Security in OpenMASH
Randy Groves
randy.groves at boeing.com
Tue Oct 1 11:59:02 CDT 2002
Well - I have run up against this in attempting to get a PIG to interact
with our venue server with mods that expose encryption keys to the vic,
rat, and mash. Both vic and rat understand Rijndael, mash
crashes. Backing up to use DES, at least in my situation, results in the
same thing.
I don't have the capability to test against the ANL Encryption Test Room,
since it's not bridged, and I don't know if it would work over the bridge
anyway. However, I've heard of successful uses of the test room with a PIG
setup.
So - I'm confused and a bit dismayed. If, in fact, there is no support for
encryption in OpenMash, it sounds on the face if it, from our just
concluded session, that it's not a priority for fixing now - since the
assumption in 2.0 is that the infrastructure will supply the encrypted
stream (and am I assuming correctly that this will be SSL?). Which mean
that implementing a set of nodes using the PIG configuration and being able
to support encryption won't be possible until late next year. Of course,
there may be DES support in OpenMash, and I'm just not starting it up
correctly. I haven't gotten a response as to whether the generic OpenMash
is being used, or a tweaked version - and if so, whether the sources are
available yet.
Thanks for any info that can enlighten me on this!!
-randy
More information about the ag-tech
mailing list