View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0002128 | 10000-004: Services | public | 2012-07-18 21:45 | 2014-06-10 17:25 | |
Reporter | Liam Power | Assigned To | Matthias Damm | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 1.01 | ||||
Fixed in Version | 1.03 | ||||
Summary | 0002128: User Token - Username Password Facet Location | ||||
Description | It is proposed to add the new user token - username password facet to the core server facet. My understanding is that this functionality was present in the core server facet historically. Previously it was acceptable to send the password unencrypted over a connection even when using an insecure channel. This is important as it allows the deployment of Micro and Nano Embedded Device Servers that do not contain any PKI functionality. Looking at Part 4 it seems that there is some ambiguity over whether or not the password must be encrypted with some text stating "shall" and some text stating "should". We need to ensure that if this functionality is going to be retained in the Core Server Facet that servers can still send passwords in clear text over insecure connections, otherwise many deployed servers will be made non-compliant. Most OEMs implementing Micro and Nano embedded device servers do not want to support PKI infrastructure within these servers at present. These servers are no less secure than the many field bus installations that they replace or complement. Please clarify the language in part 4 to make it clear that while not recommended, it is acceptable to send unencrypted passwords over insecure connections. | ||||
Tags | No tags attached. | ||||
Commit Version | |||||
Fix Due Date | |||||
|
The only place where "shall" is used in this context is after Table 168 – UserIdentityToken parameterTypeIds. This statement is very generic, details are defined in the profiles. We should add the following statement (next version): |
|
Change applied in 65E-62541-4-Ed2-IS-CDV-FE-to-kog - Editor Updates.doc Added the following sentence to 7.35.1: |
|
Agreed to edited changes in doc. |
Date Modified | Username | Field | Change |
---|---|---|---|
2012-07-18 21:45 | Liam Power | New Issue | |
2012-07-24 16:26 | Matthias Damm | Note Added: 0003907 | |
2012-07-24 16:26 | Matthias Damm | Project | 10000-004: Services => Feature Requests |
2012-07-24 16:27 | Matthias Damm | Status | new => acknowledged |
2013-09-10 16:57 | Jim Luth | Project | Feature Requests => 10000-004: Services |
2013-09-10 16:57 | Jim Luth | Status | acknowledged => assigned |
2013-09-10 16:57 | Jim Luth | Assigned To | => Matthias Damm |
2014-06-04 13:25 | Matthias Damm | Status | assigned => resolved |
2014-06-04 13:25 | Matthias Damm | Resolution | open => fixed |
2014-06-04 13:25 | Matthias Damm | Note Added: 0005343 | |
2014-06-10 17:25 | Jim Luth | Status | resolved => closed |
2014-06-10 17:25 | Jim Luth | Note Added: 0005358 | |
2014-06-10 17:25 | Jim Luth | Fixed in Version | => 1.03 |