View Issue Details

IDProjectCategoryView StatusLast Update
000831710000-018: Role-Based SecuritySpecpublic2023-06-20 20:04
ReporterMatthias Isele Assigned ToMatthias Damm  
PrioritynormalSeverityfeatureReproducibilityalways
Status closedResolutionfixed 
Product Version1.05.02 RC1 
Fixed in Version1.05.03 RC1 
Summary0008317: WellKnownRoles for RoleManagement and UserManagement missing
Description

Right now the specification only states that the methods to manage roles and users are "callable by authorized administrators".
We should add Roles for RoleManagement and for UserManagement similar to the sections "Roles and Privileges" in Part 12 and Part 14.

I assume 2 Role should cover the common use-cases.
Suggestion:
RoleManagementAdmin
UserManagementAdmin

TagsNo tags attached.
Commit Version
Fix Due Date

Activities

Jim Luth

2022-09-27 16:15

administrator   ~0017854

Two roles are already defined (SecurityAdmin and ConfigureAdmin). Need to make sure the roles are referred to not "callable by authorized administrators".

Matthias Damm

2023-01-30 10:18

developer   ~0018605

There is also inconsistency for requirement of encryption / signing

4.4.1 RoleType definition
Table 4 – RoleType definition
The Properties and Methods of the RoleType contain sensitive security related information and shall only be browseable, readable, writeable and callable by authorized administrators through an encrypted channel.

4.4.5 AddIdentity Method
The Client shall use an encrypted channel and shall provide user credentials with administrator rights when invoking this Method on the Server.

All other Methods do not have this additional requirement for encryption (which is already required by the statement below the table)
We should either remove the statement from the Method or add it to all.

4.2.1 RoleSetType definition
There is currently no requirement for signing / encryption
We must at least require signing.

Matthias Damm

2023-06-16 09:18

developer   ~0019492

Replaced related text in all Methods with the following text (taken from AddIdentity + SecurityAdmin reference):

The Client shall use an encrypted channel and shall provide user credentials with administrator rights like SecurityAdmin Role when invoking this Method on the Server.

Only ChangePassword has different text.

We do not need additional standard roles. The SecurityAdmin should cover this part since it is security administration for the server.
SecurityAdmin:
The Role is allowed to change security related settings.

Products can always add more roles if they want to make a difference.

Jim Luth

2023-06-20 20:04

administrator   ~0019589

Agreed to changes edited in virtual F2F.

Issue History

Date Modified Username Field Change
2022-09-12 10:03 Matthias Isele New Issue
2022-09-27 16:15 Jim Luth Note Added: 0017854
2022-09-27 16:15 Jim Luth Assigned To => Matthias Damm
2022-09-27 16:15 Jim Luth Status new => assigned
2023-01-30 10:18 Matthias Damm Note Added: 0018605
2023-06-16 09:18 Matthias Damm Status assigned => resolved
2023-06-16 09:18 Matthias Damm Resolution open => fixed
2023-06-16 09:18 Matthias Damm Note Added: 0019492
2023-06-20 20:04 Jim Luth Status resolved => closed
2023-06-20 20:04 Jim Luth Fixed in Version => 1.05.03 RC1
2023-06-20 20:04 Jim Luth Note Added: 0019589