On 10/11/21 12:34 PM, Maulin Vasavada wrote:
Dinesh, when you say PEM and JKS formats simultaneously, do you mean that for client vs internnode ssl we should be able to use different formats OR beyond that within particular encryption options have a combination - PEM based private keys and JKS based truststore?
Currently, Cassandra has two configuration blocks one for the client (client_encryption_options) and the other for the internode (server_encryption_options). Both blocks individually can specify a different type of truststore. Currently it only supports the stores that are supported by Java's standard stores like JKS and PKCS12. If you plan on adding new types, then lets make sure that we continue supporting these types and support PEM in addition.
Dinesh --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@cassandra.apache.org For additional commands, e-mail: dev-h...@cassandra.apache.org
