Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Add_workflow_for_techpubs
AUTH1UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26ca7f046c8a00a0c862eadf5e0163170affe7001b, userName='null'}
JIRAIDAUTHSBX-96068
REV5UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cb8305e9, userName='null'}
REV6UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cb8305e9, userName='null'}
REV3UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26ce960bec8a00a0c86573c0900165a43340b2002e, userName='null'}
REV1UserResourceIdentifier{userKey=8a00a0c86603f2b7016615c0b394002e8a00a0c86573c09001659db4327e0018, userName='null'}

Use of MD5 and SHA-1 256 as cryptographic hashing algorithms for message encryption can result in the same hash for different messages. Attackers may exploit the "collision" of same hashes, weakening the integrity of the encryption.

As a security measure against vulnerable raw hashes, Ribbon now uses digital signature based SHA-256 algorithm to verify the origin and integrity of signed software and data files. The most common usage of the SHA-256 algorithm for the SBC are as follows:

  • Generation of files with the extensions such as .iso, .ova, and .qcow2
  • Compressed files, such as cloudTemplates.tar.gz and createConfigDrive.tar.gz
  • Installation and upgrade packages


Info
titleNote

For SBC Core 9.0, MD5 is used in the following scenarios:

  • Encrypted Store
  • SNMP (sonusSnmpAuthProtocolType)
  • NTP (sonusNtpKeyType)
  • BMC/BIOS


Pagebreak