View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0009432 | 10000-002: Security | Spec | public | 2024-02-21 16:26 | 2024-09-24 08:15 |
| Reporter | Randy Armstrong | Assigned To | Paul Hunkar | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | assigned | Resolution | open | ||
| Summary | 0009432: Recommend adding a warning explaining that not using an EncryptedSecret in a Encrypted channel | ||||
| Description | Add after Table 193 add footnote (b) attached to this row: Security Policy - Other/SIGNANDENCRYPT/Security Policy - None (b) Relying on the SecureChannel to protect passwords can be more vulnerable than using the EncryptSecret with its own keys. Recommend using an EncryptSecreted in this case. | ||||
| Tags | No tags attached. | ||||
| Commit Version | |||||
| Fix Due Date | |||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2024-02-21 16:26 | Randy Armstrong | New Issue | |
| 2024-03-27 15:30 | Randy Armstrong | Project | Cyber Security => 10000-004: Services |
| 2024-03-27 15:30 | Randy Armstrong | Category | weakness => Api Change |
| 2024-04-23 16:28 | Jim Luth | Assigned To | => Matthias Damm |
| 2024-04-23 16:28 | Jim Luth | Status | new => assigned |
| 2024-09-03 12:17 | Randy Armstrong | Category | Api Change => Spec |
| 2024-09-03 12:17 | Randy Armstrong | View Status | private => public |
| 2024-09-24 08:14 | Jim Luth | Assigned To | Matthias Damm => Paul Hunkar |
| 2024-09-24 08:15 | Jim Luth | Project | 10000-004: Services => 10000-002: Security |
