View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0003022 | 10000-002: Security | Spec | public | 2015-04-02 15:49 | 2015-07-28 16:52 |
Reporter | Randy Armstrong | Assigned To | Paul Hunkar | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 1.03 | ||||
Target Version | 1.03 | Fixed in Version | 1.03 | ||
Summary | 0003022: Add discussion on X509 hash strength/security profiles and the need to have multiple X509 per applications. | ||||
Description | If an application needs to support both Basic256 and Basic256Sha256 then it may need two certificates: one with a SHA1 hash and one with a SHA256. Over time the need for a SHA1 hash will disappear as most applications will accept the stronger hash if it is provided (this is mostly the case today). | ||||
Tags | No tags attached. | ||||
Commit Version | |||||
Fix Due Date | |||||
|
Added text to certificate discussion to indicate that multiple algorithm are required depending on the security policy and that client and server maybe required to support multiple certificates, to support the different security policies. |
|
Agreed to changes edited in telecon. |
Date Modified | Username | Field | Change |
---|---|---|---|
2015-04-02 15:49 | Randy Armstrong | New Issue | |
2015-05-05 15:18 | Jim Luth | Assigned To | => Paul Hunkar |
2015-05-05 15:18 | Jim Luth | Status | new => assigned |
2015-06-22 22:43 | Paul Hunkar | Note Added: 0006152 | |
2015-06-22 22:43 | Paul Hunkar | Status | assigned => resolved |
2015-06-22 22:43 | Paul Hunkar | Resolution | open => fixed |
2015-07-28 16:52 | Jim Luth | Note Added: 0006287 | |
2015-07-28 16:52 | Jim Luth | Status | resolved => closed |
2015-07-28 16:52 | Jim Luth | Fixed in Version | => 1.03 |