0006500: Some disccussion of compromised credential handling may be appropriate.

ID	Project	Category	View Status	Date Submitted	Last Update

0006500	10000-002: Security	Spec	public	2021-02-17 16:49	2022-06-23 15:50

Reporter	Randy Armstrong	Assigned To	Paul Hunkar
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	closed	Resolution	fixed
Fixed in Version	1.05.02 RC1

Summary	0006500: Some disccussion of compromised credential handling may be appropriate.
Description	From Part 4: If the Server discovers, through some out-of-band mechanism that the application or user credentials used to create a Session or SecureChannel have been compromised, then the Server should immediately terminate all sessions and channels that use those credentials. In this case, the Service result code should be either Bad_IdentityTokenRejected or Bad_CertificateUntrusted.
Tags	BSI

Commit Version
Fix Due Date

Date Modified	Username	Field	Change
2021-02-17 16:49	Randy Armstrong	New Issue
2021-04-13 19:00	Jim Luth	Tag Attached: BSI
2021-04-13 19:01	Jim Luth	Status	new => assigned
2021-04-13 19:01	Jim Luth	Assigned To	=> Paul Hunkar
2022-06-23 05:21	Paul Hunkar	Status	assigned => resolved
2022-06-23 05:21	Paul Hunkar	Resolution	open => fixed
2022-06-23 05:21	Paul Hunkar	Fixed in Version	=> 1.05.02 RC1
2022-06-23 05:21	Paul Hunkar	Note Added: 0017009
2022-06-23 15:50	Jim Luth	Status	resolved => closed
2022-06-23 15:50	Jim Luth	Note Added: 0017057

Paul Hunkar 2022-06-23 05:21 developer ~0017009	Added new section for additional considerations

Jim Luth 2022-06-23 15:50 administrator ~0017057	Agreed to changes edited in Munich F2F.