Source: Kratos RT Logic, Inc. ( Mike Anderson)
A username or alternate security credential should be able to be provided with all C2MS requests (and possibly should be required)?
Systems should not automatically trust remote clients and therefore a credential should be required with all messages. This would allow components to authorize and audit requests on a per-user/connection level.
Reported: C2MS 1.0 — Tue, 23 Jun 2020 03:38 GMT
Updated: Fri, 7 Oct 2022 01:00 GMT
C2MS11 — Message-level Security Credentials
- Key: C2MS11-22
- OMG Task Force: Command and Control Message Specification (C2MS) 1.1 RTF