Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-85381

Create an asymmetric crypto library

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Unresolved
    • Icon: Major - P3 Major - P3
    • None
    • None
    • None
    • None
    • Server Security

    Description

      The DPoP project (PM-3537) will add another area in the server where an API for performing asymmetric cryptography tasks (such as digital signature signing & validation) would be very handy. Currently, only the JWS validator for OIDC performs asymmetric crypto in the server, therefore much of the asymmetric crypto functions are implemented within JWS validator, with its platform-specific variants (eg jws_validator_(openssl|apple|none|windows).cpp).  This ticket aims to move all the common asymmetric crypto functionality (& platform specific stuff) into a library, and provide a platform agnostic API for the rest of the server.

      Attachments

        Activity

          People

            backlog-server-security Backlog - Security Team
            erwin.pe@mongodb.com Erwin Pe
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: