-
Key: DDSSEC12-85
-
Status: closed
-
Source: Object Computing, Inc. - OCI ( Mr. Adam Mitz)
-
Summary:
The check_remote_participant row of Table 63 contains the text:
If the Permissions document contains a Grant for the remote
DomainParticipant and the Grant contains an allow rule on the
DomainParticipant domain_id, then the operation shall succeed and
return TRUE.It seems like the intent is to ensure that there is some possible Action that this participant can do in the domain. That should take into account a <default>ALLOW</default> permission.
In general the <default> XML element seems to be not fully/consistently described in the section for Built-In Access Control. The xsd says it must be present, but section 9.4.1.3.2.3 says it may not be.
-
Reported: DDS-SECURITY 1.1b1 — Tue, 23 Jun 2020 04:13 GMT
-
Disposition: Duplicate or Merged — DDS-SECURITY 1.2
-
Disposition Summary:
Merge with
DDSSEC12-79This issue impacts the same table/rules as https://issues.omg.org/browse/DDSSEC12-79
we propose to handle them toguether.
-
Updated: Mon, 17 Jun 2024 13:36 GMT
DDSSEC12 — check_remote_participant when default is ALLOW
- Key: DDSSEC12-85
- OMG Task Force: DDS Security 1.2 RTF