This plugin is terrific for how simple it is, and I've confirmed that files at rest are indeed encrypted, but how is it encrypted? What's the algorithm and the strength?
I get a Iv value and a key when I first encrypt the data, I think that gives some indication?
To satisfy the decision makers that we can figure out how to reverse the decryption having backed up the keys and filesystem, can you give an openssl enc commandline to decrypt a file? It should be something like:
openssl enc -<cipher> -d -K <key> -iv <IV> -in <infile> -o <outfile>
So far I've had no success trying various combinations of DES ciphers and options.
Hang on, I had to generate a key and IV within Jira; how can it decrypt without an IV? And what cipher should I be using? There are lots of DES variants supported by openssl:
Also, are there any padding or salt options I should be passing?
Currently, we are working in order to change DES for AES method.
In this case (DES), is only necessary the key, because we are using DESKeySpec class (provided by java) .Maybe, this page can help you. (https://www.programcreek.com/java-api-examples/?api=javax.crypto.spec.DESKeySpec)
On the other hand, I think that is not possible decrypt if you don't use JIRA.
Nope, we gave up on this vendor. Single DES uses a 56-bit key, which is insufficient . I stopped working on trying to decrypt manually when I realized how insecure it was. I might take another look if/when they manage to support AES (really, how hard do they think it is? it's just a slightly different Java API).
Hey Atlassian community, I help lead engineering at Sentry, an open-source error-tracking and monitoring tool that integrates with Jira. We started using Jira Software Cloud internally last year, a...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs