-
Key: DDSSEC11-47
-
Status: closed
-
Source: Real-Time Innovations ( Dr. Gerardo Pardo-Castellote, Ph.D.)
-
Summary:
This is regarding the DDS Security spec Table 41 validate_local_identity “The 47 bits following the first bit (bits 1 to 47) shall be set to
the 47 first bits of the SHA-256 hash of the SubjectName appearing on the identity_credential”.The format of the SubjectName is not specified. It should say “The 47 bits following the first bit (bits 1 to 47) shall be set to the 47 first bits of the SHA-256 hash of the ASN.1 DER encoding of the SubjectName [40] appearing on the identity_credential”, where [40] is https://tools.ietf.org/html/rfc5280, which is already in the References section.
Section 4.1.2.6 and Appendix C.2 of the RFC are the most relevant sections.
-
Reported: DDS-SECURITY 1.0 — Wed, 7 Dec 2016 18:01 GMT
-
Disposition: Resolved — DDS-SECURITY 1.1
-
Disposition Summary:
Changes in Specification to Specify SubjectName Format
This will define the changes to the specification according to
DDSSEC11-47. -
Updated: Tue, 19 Dec 2017 20:03 GMT
DDSSEC11 — Need to specify format of SubjectName used for adjusted_participant_key
- Key: DDSSEC11-47
- OMG Task Force: DDS Security 1.1 RTF