Translation(s): none

This Page collects information about what Debian can do or what might be feasible to allow the administrator of a system more control over cryptographic parameters like used cyphers, protocols, ....


This is inspired by Fedora's CryptoPolicy:

Fedora's CryptoPolicy is roughly about:

Possible actions for Debian

supporting using profiles in crypto libraries

Debian could look at the patches used by Fedora and include them, too. (Even if doing nothing, Fedora will hopefully manage to get them upsream so in the end we might get them anyway).

offering a update-crypo-policies framework

Either packaging was Fedora has (possibly adopting it to our needs) or writing something equivalent of ourself.

Research needed.

Crypto settings in applications

Once the framework is available, it is about changing programs to use them.

Possible early steps: