0008426: No validation of OpenSecureChannel SecurityTokens implementation available

ID	Project	Category	View Status	Date Submitted	Last Update

0008426	Compliance Test Tool (CTT) Unified Architecture	4 - Test Case Definition	public	2022-11-04 07:08	2022-11-18 16:48

Reporter	Thomas	Assigned To	Thomas
Priority	normal	Severity	major	Reproducibility	N/A
Status	assigned	Resolution	open

Summary	0008426: No validation of OpenSecureChannel SecurityTokens implementation available
Description	a) Clients should request a new SecurityToken after 75 % of its lifetime has elapsed. This should ensure that Clients will receive the new SecurityToken before the old one actually expires. b) Servers shall use the existing SecurityToken to secure outgoing Messages until the SecurityToken expires or the Server receives a Message secured with a new SecurityToken. This should ensure that Clients do not reject Messages secured with the new SecurityToken that arrive before the Client receives the new SecurityToken. c) Clients should accept Messages secured by an expired SecurityToken for up to 25 % of the token lifetime. This should ensure that Messages sent by the Server before the token expired are not rejected because of network delays.
Tags	No tags attached.

Files Affected

Date Modified	Username	Field	Change
2022-11-04 07:08	Thomas	New Issue
2022-11-18 16:48	Paul Hunkar	Assigned To	=> Thomas
2022-11-18 16:48	Paul Hunkar	Status	new => assigned