Community
Participate
Working Groups
We have an existing problem with org.eclipse.higgins.common.AuthNNamePasswordMaterials as it holds a password in a String. String is not mutable, thus its contents are more subject to being discovered because data known to be sensitive can't be zeroed out. It's easy to fix the constructor, but the name and password are stored as IAttributes. As their values are simple attrributes, their lexical representations are passed around in Strings. Should we change org.eclipse.higgins.idas.api.ITypedValue such that getLexical and getCanonical return char arrays instead of Strings so that when they're known to contain sensitive data, they can be overwritten when no longer used?
Mike suggests a special attribute type ISecretAttribute
mail thread started at http://dev.eclipse.org/mhonarc/lists/higgins-dev/msg03462.html