[SERVER-9058] Use FIPS-140-2 Approved Pseudorandom Number Generator for SecureRandom - MongoDB Jira

XML

Word

Printable

Details

Type: Task
Status: Open
Priority: Major - P3
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: Backlog
Component/s: Security
Labels:
None

Description

On systems with a /dev/urandom, we defer to the operating system for our source of secure pseudorandom numbers. On other systems, we sort of let the ball drop. We should use a FIPS-140-2 compliant PRNG for SecureRandom on all systems, one way or another.

Attachments

Issue Links

is related to

SERVER-2360 Add a stronger password authentication scheme (replace md5 with sha?)

Closed

SERVER-7648 Support Use of FIPS 140-2 Compliant Crypto Library

Closed

SERVER-17422 Improve random number number gen

Closed

related to

SERVER-21253 Improve structure and functionality of random number generation classes

Open

SERVER-20919 Use OpenSSL to generate IVs

Closed

Activity

People

Assignee:: Backlog - Security Team

Reporter:: Andy Schwerin

Participants:: Andy Schwerin, Backlog - Security Team, Mark Benvenuto

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: Mar 21 2013 05:01:20 PM UTC

Updated:: Jun 17 2019 03:39:04 PM UTC