0008246: Part 83, section 7.7.1 separate signing of the external reference in a Descriptor (from G. Biehler)

ID	Project	Category	View Status	Date Submitted	Last Update

0008246	Part 83: UAFX Offline Engineering	Spec	public	2022-08-25 14:28	2022-09-16 13:50

Reporter	Todd Snide	Assigned To	Todd Snide
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	closed	Resolution	no change required
Product Version	1.00.00 RC3
Target Version	1.00.00 RC3	Fixed in Version	1.00.00 RC3

Summary	0008246: Part 83, section 7.7.1 separate signing of the external reference in a Descriptor (from G. Biehler)
Description	The sentence reads: The links to the external references, if any, in a Descriptor shall be included in the signature of the Descriptor. The content of the external reference should be digitally signed separately from the Descriptor signature. this allows me to manipulate the external content, however, I’m not able to detect the manipulation
Tags	No tags attached.

Todd Snide 2022-08-26 15:58 developer ~0017411	After discussion with Martin Dickopp: If the referenced document is digitally signed and the signature is embedded in the document (e.g. AML Container (OPC UA FX AML Libraries)), then the document can be trusted (if the signer is trusted). For detached signatures we will develop a concept in C2D. No changes to the text are required.

Emanuel Kolb 2022-09-16 13:50 manager ~0017691	agreed in OE meeting to close

Date Modified	Username	Field	Change
2022-08-25 14:28	Todd Snide	New Issue
2022-08-25 14:28	Todd Snide	Status	new => assigned
2022-08-25 14:28	Todd Snide	Assigned To	=> Todd Snide
2022-08-26 15:58	Todd Snide	Status	assigned => resolved
2022-08-26 15:58	Todd Snide	Resolution	open => no change required
2022-08-26 15:58	Todd Snide	Fixed in Version	=> 1.00.00 RC3
2022-08-26 15:58	Todd Snide	Note Added: 0017411
2022-09-16 13:50	Emanuel Kolb	Status	resolved => closed
2022-09-16 13:50	Emanuel Kolb	Note Added: 0017691