View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0003366 | 10000-002: Security | Spec | public | 2016-03-02 17:41 | 2017-09-05 16:30 |
Reporter | randyarmstrong | Assigned To | Paul Hunkar | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Summary | 0003366: BSI: Expand Best-Practices Descriptions. | ||||
Description | securityMode None should be completely deactivated to avoid missconfiguration and downgrade attacks. Is confidentially a needed feature SignAndEncrypt should be choosen. (See table 16, threats 10-15, 18, 22-30) Will certificates and private keys stored on a filesystem (table 17, threat 32) it should be ensured with the help of the 'least priviledge' principle, that read or write access is only allowed to whom who really needs these data. This means that an administrator for example can store a private key but is not allowed to read them, and in oposite an UA application can read such private keys, but cannot store them. When certificates will be used the complete certficate chain should be validated. Following Part 4 section 6.1.3 of the specification the certificate chain will only be checked till the first trusted certificate. Normally is a root CA certificate to be configured as the final trust anker. Will a Sub CA certificate configured a trustworthy it has to be obeyed that the root CA certificate and the corresponding CRLs will not be calculated and therefore the complete chain is not completely checked. Especially it could not be checked whether the Sub CA certificate is revoked.
As securityPolicyUri is the in the moment most secure one recommended: Basic256Sha256. (table 16, threat 11-15, 22 - 30) Contain the used crypto libraries weak spots (table 17, threat 40) these could be exploitet to leverage the security when wigning or encrypting data. Correspondant it's important to use approved vrypto libraries where leak out weaks become fixed in a short time. | ||||
Tags | No tags attached. | ||||
Commit Version | |||||
Fix Due Date | |||||
related to | 0003325 | closed | Matthias Damm | 10000-004: Services | 5.5.2.2 (Table 7) Add clarification |
Date Modified | Username | Field | Change |
---|---|---|---|
2016-03-02 17:41 | randyarmstrong | New Issue | |
2016-03-08 16:26 | Jim Luth | Assigned To | => Paul Hunkar |
2016-03-08 16:26 | Jim Luth | Status | new => assigned |
2016-03-08 16:26 | Jim Luth | Target Version | => 1.04 |
2016-12-19 16:54 | Matthias Damm | Relationship added | related to 0003325 |
2017-09-01 12:47 | Paul Hunkar | Note Added: 0008421 | |
2017-09-01 12:47 | Paul Hunkar | Status | assigned => resolved |
2017-09-01 12:47 | Paul Hunkar | Resolution | open => fixed |
2017-09-05 16:30 | Jim Luth | Note Added: 0008424 | |
2017-09-05 16:30 | Jim Luth | Status | resolved => closed |
2017-09-05 16:30 | Jim Luth | Fixed in Version | => 1.04 |