-
Key: DDSSEC13-94
-
Status: open
-
Source: Real-Time Innovations ( Dr. Gerardo Pardo-Castellote, Ph.D.)
-
Summary:
The PSK plugins does not have any description of the Logging plugin. This section should be added
Note that PSK cannot re-use the same exact approach as the "PKI"-based plugins because the logging topic there uses submessage protection and the PSK plugins do not implement this.
Currently
DDS:Security:LogTopicV2 is the topic used in the Builtin Security Plugins for logging, and it has submessage protection.
Also the Builtin Security Plugins treat the DDS:Security:LogTopicV2 topic according to the following topic rule:<topic_rule> <topic_expression>DDS:Security:LogTopic*</topic_expression> <enable_discovery_protection>FALSE</enable_discovery_protection> <enable_read_access_control>TRUE</enable_read_access_control> <enable_write_access_control>FALSE</enable_write_access_control> <metadata_protection_kind>SIGN</metadata_protection_kind> <data_protection_kind>ENCRYPT</data_protection_kind> </topic_rule>Proposed change:
There should be a new “logging topic” for the Builtin PSK Security Plugins. It should be secured as:<topic_rule> <topic_expression>DDS:Security:PSK:LogTopic</topic_expression> <enable_discovery_protection>FALSE</enable_discovery_protection> <enable_read_access_control>FALSE</enable_read_access_control> <enable_write_access_control>FALSE</enable_write_access_control> <metadata_protection_kind>NONE</metadata_protection_kind> <data_protection_kind>NONE</data_protection_kind> </topic_rule>The new topic should have the same type, BuiltinLoggingTypeV2.
The new topic name should be DDS:Security:PSK:LogTopic. -
Reported: DDS-SECURITY 1.2 — Wed, 23 Jul 2025 15:32 GMT
-
Updated: Wed, 10 Dec 2025 16:24 GMT
DDSSEC13 — Specify BuiltinLoggingTopic for PSK Plugins
- Key: DDSSEC13-94
- OMG Task Force: DDS Security 1.3 RTF