[ol9_appstream] idm-pki-kra-11.5.1-1.0.1.el9.noarch

Name:	idm-pki-kra
Version:	11.5.1
Release:	1.0.1.el9
Architecture:	noarch
Group:	Unspecified
Size:	651751
License:	GPL-2.0-only and LGPL-2.0-only
RPM:	idm-pki-kra-11.5.1-1.0.1.el9.noarch.rpm
Source RPM:	pki-core-11.5.1-1.0.1.el9.src.rpm
Build Date:	Tue Oct 29 2024
Build Host:	build-ol9-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://www.dogtagpki.org
Summary:	IDM PKI KRA Package
Description:	IDM PKI Key Recovery Authority (KRA) is an optional subsystem that can act as a key archival facility. When configured in conjunction with the Certificate Authority (CA), the KRA stores private encryption keys as part of the certificate enrollment process. The key archival mechanism is triggered when a user enrolls in the PKI and creates the certificate request. Using the Certificate Request Message Format (CRMF) request format, a request is generated for the user's private encryption key. This key is then stored in the KRA which is configured to store keys in an encrypted format that can only be decrypted by several agents requesting the key at one time, providing for protection of the public encryption keys for the users in the PKI deployment. Note that the KRA archives encryption keys; it does NOT archive signing keys, since such archival would undermine non-repudiation properties of signing keys.

Changelog (Show File list) (Show related packages)

Mon Oct 28 2024 Darren Archibald <darren.archibald@oracle.com> - 11.5.1-1.0.1
```
- Replaced upstream graphical references [Orabug: 33952704]
```
Fri Jun 21 2024 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.5.1-1
```
- Rebase to PKI 11.5.1
```
Wed Feb 21 2024 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.5.0-1
```
- Rebase to PKI 11.5.0
```
Mon Jun 05 2023 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.4.2-1
```
- Rebase to PKI 11.4.2
```

Mon Jan 30 2023 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.3.0-1

- Rebase to PKI 11.3.0
- Bug #2091993 - IdM Install fails on RHEL 8.5 Beta when DISA STIG is applied
- Bug #2122409 - pki-tomcat/kra unable to decrypt when using RSA-OAEP padding in RHEL9 with FIPS enabled

Wed Nov 30 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.3.0-0.2.beta1

- Rebase to PKI 11.3.0-beta1
- Bug #1849834 - [RFE] Provide EST Responder (RFC 7030)
- Bug #1883477 - [RFE] Automatic expired certificate purging
- Bug #2091999 - Error displayed should be user friendly in case RSNv3 certificate serial number collision
- Bug #2106452 - softhsm2: Unable to create cert: Private key not found
- Bug #2106459 - CVE-2022-2393 pki-core: Improper authentication/authorization with caServerKeygen_DirUserCert profile