DDS-SECURITY 1.1 RTF Avatar
  1. OMG Issue

DDSSEC11 — Confusing Sentence about Builtin Endpoints Payload Encryption

Open Closed All
  • Key: DDSSEC11-55
  • Status: closed  
  • Source: Real-Time Innovations ( Dr. Gerardo Pardo-Castellote, Ph.D.)
  • Summary:

    In the DDS-SECURITY specification, the following statement could lead to some confusion:

    9.4.1.2.4.4 Discovery Protection Kind element
The builtin endpoints shall never apply cryptographic transformations to the SecuredPayload
submessage element.

    The wording is not clear. It is suggesting that there should be a SecuredPayload submessage element whose contents are identical to the plaintext, i.e. not transformed.

    It should be changed to something like:

    • The builtin endpoints shall never apply payload-level cryptographic transformations.
  • Reported: DDS-SECURITY 1.0 — Thu, 23 Feb 2017 23:45 GMT
  • Disposition: Resolved — DDS-SECURITY 1.1
  • Disposition Summary:

    Modify Confusing Sentence about Builtin Endpoints

    Change sentence to be more clear.
  • Updated: Tue, 19 Dec 2017 20:03 GMT