ETSI's Bug Tracker - SECURITY | |||||
View Issue Details | |||||
ID | Project | Category | View Status | Date Submitted | Last Update |
0007308 | SECURITY | TSS&TP | public | 14-01-2016 10:09 | 15-01-2016 16:20 |
Reporter | haddads | ||||
Assigned To | Denis Filatov | ||||
Priority | normal | Severity | minor | Reproducibility | have not tried |
Status | resolved | Resolution | fixed | ||
Platform | OS | OS Version | |||
Product Version | |||||
Target Version | Next Version | Fixed in Version | |||
Summary | 0007308: [TP_SEC_ITSS_SND_CERT_AA_06_01_BV] Time start and end equal ? | ||||
Description | The summary says that it checks if time_end is greater than the time_start. The test in fact test if it is greater or equal. Does it have any meanings if it's equal ? Shouldn't the validity time be forced to be at least greater than a lower value. Otherwise producing certificates valid only one second could be used for DoS attacks forcing constant renewal of the certificates. | ||||
Steps To Reproduce | |||||
Additional Information | |||||
Tags | No tags attached. | ||||
Relationships | |||||
Attached Files | |||||
Issue History | |||||
Date Modified | Username | Field | Change | ||
14-01-2016 10:09 | haddads | New Issue | |||
14-01-2016 10:09 | haddads | Status | new => assigned | ||
14-01-2016 10:09 | haddads | Assigned To | => Denis Filatov | ||
15-01-2016 16:20 | Denis Filatov | Checkin | |||
15-01-2016 16:20 | Denis Filatov | Note Added: 0013699 | |||
15-01-2016 16:20 | Denis Filatov | Status | assigned => resolved | ||
15-01-2016 16:20 | Denis Filatov | Resolution | open => fixed |
Notes | |||||
|
|||||
|
|