ETSI's Bug Tracker - SECURITY | |||||
| View Issue Details | |||||
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0007308 | SECURITY | TSS&TP | public | 14-01-2016 10:09 | 15-01-2016 16:20 |
| Reporter | haddads | ||||
| Assigned To | Denis Filatov | ||||
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | resolved | Resolution | fixed | ||
| Platform | OS | OS Version | |||
| Product Version | |||||
| Target Version | Next Version | Fixed in Version | |||
| Summary | 0007308: [TP_SEC_ITSS_SND_CERT_AA_06_01_BV] Time start and end equal ? | ||||
| Description | The summary says that it checks if time_end is greater than the time_start. The test in fact test if it is greater or equal. Does it have any meanings if it's equal ? Shouldn't the validity time be forced to be at least greater than a lower value. Otherwise producing certificates valid only one second could be used for DoS attacks forcing constant renewal of the certificates. | ||||
| Steps To Reproduce | |||||
| Additional Information | |||||
| Tags | No tags attached. | ||||
| Relationships | |||||
| Attached Files | |||||
| Issue History | |||||
| Date Modified | Username | Field | Change | ||
| 14-01-2016 10:09 | haddads | New Issue | |||
| 14-01-2016 10:09 | haddads | Status | new => assigned | ||
| 14-01-2016 10:09 | haddads | Assigned To | => Denis Filatov | ||
| 15-01-2016 16:20 | Denis Filatov | Checkin | |||
| 15-01-2016 16:20 | Denis Filatov | Note Added: 0013699 | |||
| 15-01-2016 16:20 | Denis Filatov | Status | assigned => resolved | ||
| 15-01-2016 16:20 | Denis Filatov | Resolution | open => fixed | ||
| Notes | |||||
|
|
|||||
|
|
||||