View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
000660010000-004: ServicesSpecpublic2021-03-10 17:192022-12-09 13:38
ReporterRandy Armstrong Assigned ToMatthias Damm  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionfixed 
Fixed in Version1.05.03 RC1 
Summary0006600: 6.1.2 Consider Explicitly Stating Why CA signed certificates may be more appropriate for some applications.
Description

Text does not give guidance on why self-signed Certificate might not meet security requirements:

If the administrator responsible for the application decides that a self-signed Certificate does not meet the security requirements of the organisation, then the administrator should install a Certificate issued by a Certification Authority.

TagsBSI
Commit Version
Fix Due Date

Activities

Matthias Damm

2022-12-06 21:08

developer   ~0018258

6.1.2 Obtaining and installing an Application Instance Certificate

Added following statement:

Self-signed Certificates and their manual management and replacement before expiry may be appropriate for a few Clients connected to one Server. In more enhanced communication scenarios a central management of Certificates based a Certificate Authority is required. This includes initial roll-out and automatic updates by a Certificate Manager defined in OPC 10000-12.

Jim Luth

2022-12-09 13:38

administrator   ~0018295

Agreed to changes in virtual F2F.

Issue History

Date Modified Username Field Change
2021-03-10 17:19 Randy Armstrong New Issue
2021-04-06 17:43 Jim Luth Tag Attached: BSI
2021-04-06 17:44 Jim Luth Assigned To => Matthias Damm
2021-04-06 17:44 Jim Luth Status new => assigned
2022-12-06 21:08 Matthias Damm Status assigned => resolved
2022-12-06 21:08 Matthias Damm Resolution open => fixed
2022-12-06 21:08 Matthias Damm Fixed in Version => 1.05.03 RC1
2022-12-06 21:08 Matthias Damm Note Added: 0018258
2022-12-09 13:38 Jim Luth Status resolved => closed
2022-12-09 13:38 Jim Luth Note Added: 0018295