SHA-2 Support

OvenMediaEngine Enterprise provides the features to select SHA-2 as the hash algorithm used for Alert, SignedPolicy, and AdmissionWebhooks authentication, in line with the security requirements of enterprise environments.

You can flexibly configure the environment and performance by directly selecting SHA-256, SHA-384, or SHA-512 within the Settings (Server.xml) of OvenMediaEngine Enterprise.

SHA-2 Settings

SHA-2 is available for use with <Alert>, <SignedPolicy>, and <AdmissionWebhooks>, and can be configured in Server.xml as follows:

<?xml version="1.0" encoding="UTF-8"?>
<Server version="8">
  ...
  <Alert>
    <HashAlgorithm>SHA-256</HashAlgorithm>
    ...
  </Alert>
  ...
  <VirtualHosts>
    <VirtualHost>
      <SignedPolicy>
        <HashAlgorithm>SHA-256</HashAlgorithm>
        ...
      </SignedPolicy>
      ...
      <AdmissionWebhooks>
        <HashAlgorithm>SHA-256</HashAlgorithm>
        ...
      </AdmissionWebhooks>
      ...
    </VirtualHost>
  </VirtualHosts>
</Server>

Hash Algorithm Values

There are a total of seven <HashAlgorithm> values are supported in OvenMediaEngine Enterprise:

SHA-1

Value Expression

Value	Expression
SHA-1 * Default	`<HashAlgorithm>``SHA-1``</HashAlgorithm>`

SHA-1

* Default

<HashAlgorithm>SHA-1</HashAlgorithm>

SHA-2

Value	Expression
SHA-224	`<HashAlgorithm>``SHA-224``</HashAlgorithm>`
SHA-256	`<HashAlgorithm>``SHA-256``</HashAlgorithm>`
SHA-384	`<HashAlgorithm>``SHA-384``</HashAlgorithm>`
SHA-512	`<HashAlgorithm>``SHA-512``</HashAlgorithm>`
SHA-512/224	`<HashAlgorithm>``SHA-512/224``</HashAlgorithm>`
SHA-512/256	`<HashAlgorithm>``SHA-512/256``</HashAlgorithm>`

SHA-2 Settings​

Hash Algorithm Values​

SHA-1​

SHA-2​

SHA-2 Settings

Hash Algorithm Values

SHA-1

SHA-2