SHA-2 Support

OvenMediaEngine Enterprise supports SHA-2 starting from version 0.18.3.2-1.

OvenMediaEngine Enterprise provides the features to select SHA-2 as the hash algorithm used for Alert, SignedPolicy, and AdmissionWebhooks authentication, in line with the security requirements of enterprise environments.

You can flexibly configure the environment and performance by directly selecting SHA-256, SHA-384, or SHA-512 within the Settings (Server.xml) of OvenMediaEngine Enterprise.

SHA-2 Settings

SHA-2 is available for use with <Alert>, <SignedPolicy>, and <AdmissionWebhooks>, and can be configured in Server.xml as follows:

<?xml version="1.0" encoding="UTF-8"?>
<Server version="8">
  ...
  <Alert>
    <HashAlgorithm>SHA-256</HashAlgorithm>
    ...
  </Alert>
  ...
  <VirtualHosts>
    <VirtualHost>
      <SignedPolicy>
        <HashAlgorithm>SHA-256</HashAlgorithm>
        ...
      </SignedPolicy>
      ...
      <AdmissionWebhooks>
        <HashAlgorithm>SHA-256</HashAlgorithm>
        ...
      </AdmissionWebhooks>
      ...
    </VirtualHost>
  </VirtualHosts>
</Server>

Hash Algorithm Values

There are a total of seven <HashAlgorithm> values are supported in OvenMediaEngine Enterprise:

SHA-1

Value
Expression

SHA-1

* Default

<HashAlgorithm>SHA-1</HashAlgorithm>

SHA-2

Value
Expression

SHA-224

<HashAlgorithm>SHA-224</HashAlgorithm>

SHA-256

<HashAlgorithm>SHA-256</HashAlgorithm>

SHA-384

<HashAlgorithm>SHA-384</HashAlgorithm>

SHA-512

<HashAlgorithm>SHA-512</HashAlgorithm>

SHA-512/224

<HashAlgorithm>SHA-512/224</HashAlgorithm>

SHA-512/256

<HashAlgorithm>SHA-512/256</HashAlgorithm>

PreviousRTMP AuthenticationNextOrigin Redundancy

Last updated