[SERVER-32973] Implement SCRAM-SHA-256 SCRAM variant Created: 29/Jan/18  Updated: 29/Oct/23  Resolved: 10/Feb/18

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: None
Fix Version/s: 3.7.2

Type: Improvement Priority: Major - P3
Reporter: Spencer Jackson Assignee: Sara Golemon
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Backwards Compatibility: Minor Change
Sprint: Platforms 2018-02-12
Participants:

 Description   

Specialize the SCRAM-SHA-1 mechanism, to provide a new mechanism supporting SCRAM-SHA-256.

This may require adding some additional customization points to the SCRAM-SHA-1 templates.

The server will need to expose, and the mechanism will need to consume, a scramSHA256IterationCount setParameter.

The SCRAM-SHA-256 mechanism will need to consume ICU4C for SASLPrep normalization of usernames and passwords.

The SCRAM-SHA-1 unittests should be generalized to test both mechanisms.



 Comments   
Comment by Githook User [ 10/Feb/18 ]

Author:

{'email': 'sara.golemon@mongodb.com', 'name': 'Sara Golemon', 'username': 'sgolemon'}

Message: SERVER-32973 Enable SCRAM-SHA-256 authentication
Branch: master
https://github.com/mongodb/mongo/commit/c4c4bef71ecd64db91e1252200d82a2f5c265cc6

Comment by Githook User [ 10/Feb/18 ]

Author:

{'email': 'sara.golemon@mongodb.com', 'name': 'Sara Golemon', 'username': 'sgolemon'}

Message: SERVER-32973 Enable SCRAM-SHA-256 authentication
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/d333558391b416853a08597b015a774c6b2b5d34

Generated at Thu Feb 08 04:31:53 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.