caBIG and caGrid Users,
The National Institute for Standards and Technology (NIST) has mandated that all federal systems which leverage security make use of SHA 2 family or better certificates for host identities and signing. The SHA-2 family of algorithms creates a unique ‘message digest’ of any block of information that can be used to quickly verify that the contents of the block did not change. More information about the NIST approved hashing algorithms can be found at:
This mandate affects the Training, QA, Stage and Production caBIG deployments of caGrid, and any other services maintained by federal entities. The caBIG team is preparing to comply with that mandate by 31 December 2011.
This update will involve updates to the core services of the caGrid and minor changes and recompiling all services and applications using caGrid. The caGrid Knowledge Center and Development teams are working diligently to make sure that there is a clear upgrade path and that all impacts will be minimal. The development team and project management will update the caGrid stakeholders regularly as more information becomes available.
Questions and concerns can be sent to either of the following:
caGrid KC Security Forum: https://cabig-kc.nci.nih.gov/CaGrid/forums/viewforum.php?f=15
caBIG Technical Program Manager
ARCH and VCDE Workspaces