Uploaded image for project: 'C# Driver'
  1. C# Driver
  2. CSHARP-1703

SCRAM-SHA-1 fails on FIPS machines

    XMLWordPrintableJSON

Details

    • Icon: Improvement Improvement
    • Resolution: Won't Fix
    • Icon: Major - P3 Major - P3
    • None
    • None
    • Security
    • None

    Description

      MD5 is used in the SCRAM-SHA-1 implementation in a non-cryptographic manner. As such, when the machine is in FIPS compliance mode, we still fail to authenticate because we are using the managed MD5 implementation. We need to write a custom MD5 implementation for use in non-cryptographic scenarios.

      Attachments

        Activity

          People

            robert@mongodb.com Robert Stam
            craig.wilson@mongodb.com Craig Wilson
            Votes:
            3 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: