-
Key: DDSSEC13-53
-
Status: open
-
Source: Real-Time Innovations ( Dr. Gerardo Pardo-Castellote, Ph.D.)
-
Summary:
The RTPS spec allows a single RTPS message to contain multiple INFO_SRC submessages, effectively changing the Participant GUID of the sending Participant.
This seems problematic for DDS Security since the cryptograophic material is tied to that Participant GUID (e.g. the RTPS protection).
Also INFO_SRC does not work well with the new RTPS_HEADER_EXTENSION.How commonly is this capability used? It is worth finding a way to make DDS-Security work with it or would it be better to disallow it.
Should it be disallowed just for DDS-Security or for DDS in general?
-
Reported: DDS-SECURITY 1.1b1 — Wed, 27 Sep 2023 13:24 GMT
-
Updated: Fri, 21 Jun 2024 22:35 GMT
DDSSEC13 — Problematic use of multiple INFO_SRC within an RTPS
- Key: DDSSEC13-53
- OMG Task Force: DDS Security 1.3 RTF