Private CA Algorithm Check
Rule Details
|
Parameter |
Description |
|---|---|
|
Rule Name |
pca-algorithm-check |
|
Identifier |
Algorithm Check |
|
Description |
If a private certificate or CA prohibits key-based algorithms or signature-based hash algorithms, the private certificate or CA is noncompliant. |
|
Tag |
pca |
|
Trigger Type |
Configuration change |
|
Filter Type |
pca.ca, pca.cert |
|
Configure Rule Parameters |
|
Applicable Scenario
Secure algorithms are critical for private CA and certificate security. You are advised to use algorithms that can ensure enough security for your resources. This will not costs much as they used to.
Solution
You can remove noncompliant private CAs and certificates, and purchase new ones that meet your security requirements.
Rule Logic
- If a private certificate or CA prohibits key-based algorithms or signature-based hash algorithms, the private certificate or CA is noncompliant.
- If a private certificate or CA does not prohibit key-based algorithms or signature-based hash algorithms, the private certificate or CA is compliant.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
