View Issue Details

IDProjectCategoryView StatusLast Update
001008810000-012: DiscoverySpecpublic2025-01-14 16:52
ReporterMatthias Damm Assigned ToRandy Armstrong  
PrioritynormalSeveritymajorReproducibilityhave not tried
Status assignedResolutionopen 
Product Version1.05.04 
Target Version1.05.05 RC1 
Summary0010088: Handling of private key in CertificateUpdateRequestedAuditEventType
Description

The CertificateUpdateRequestedAuditEventType and potentially also CertificateUpdatedAuditEventType may contain a private key if the UpdateCertificate call contained a private key in the InputArguments.

We should require that the private key is excluded from the data filled into the InputArguments event field of the audit event fired for UpdateCertificate.

TagsNo tags attached.
Commit Version1.05.05
Fix Due Date2025-02-15

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2025-01-07 08:24 Matthias Damm New Issue
2025-01-14 16:51 Jim Luth Assigned To => Randy Armstrong
2025-01-14 16:51 Jim Luth Status new => assigned
2025-01-14 16:52 Jim Luth Commit Version => 1.05.05
2025-01-14 16:52 Jim Luth Fix Due Date => 2025-02-15