View Issue Details

IDProjectCategoryView StatusLast Update
000691210000-002: SecuritySpecpublic2024-06-13 17:30
ReporterRandy Armstrong Assigned ToPaul Hunkar  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionfixed 
Fixed in Version1.05.04 RC1 
Summary0006912: 5.1.11 Compromising user credentials
Description

OPC UA depends upon the site CSMS....

Does not really apply for token based credentials with a common identity service.
Need to mention the distinction and indicate that protection of credentials is the responsibility of the identity service provider when used.

TagsBSI
Commit Version1.05.04 RC
Fix Due Date

Activities

Paul Hunkar

2024-06-09 04:38

developer   ~0021267

Added text to explain the issue and also text describe how to mitigate the issue.

Jim Luth

2024-06-13 17:30

administrator   ~0021367

Agreed to changes edited in virtual F2F.

Issue History

Date Modified Username Field Change
2021-05-05 15:45 Randy Armstrong New Issue
2021-05-05 15:45 Randy Armstrong Tag Attached: BSI
2021-05-05 15:59 Randy Armstrong Project 10000-004: Services => 10000-002: Security
2021-11-30 17:34 Jim Luth Assigned To => Paul Hunkar
2021-11-30 17:34 Jim Luth Status new => assigned
2024-06-09 04:38 Paul Hunkar Status assigned => resolved
2024-06-09 04:38 Paul Hunkar Resolution open => fixed
2024-06-09 04:38 Paul Hunkar Fixed in Version => 1.05.04 RC1
2024-06-09 04:38 Paul Hunkar Note Added: 0021267
2024-06-13 17:30 Jim Luth Status resolved => closed
2024-06-13 17:30 Jim Luth Commit Version => 1.05.04 RC
2024-06-13 17:30 Jim Luth Note Added: 0021367