ETSI's Bug Tracker |
Anonymous | Login | Signup for local Mantis account | 25-04-2024 13:32 IST |
Main | My View | View Issues | Change Log | Roadmap | Monitor project |
View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
ID | Project | Category | View Status | Date Submitted | Last Update | ||||
0007258 | SECURITY | TSS&TP | public | 16-12-2015 15:28 | 28-01-2016 17:25 | ||||
Reporter | Peter Felber | ||||||||
Assigned To | Denis Filatov | ||||||||
Priority | normal | Severity | minor | Reproducibility | have not tried | ||||
Status | resolved | Resolution | fixed | ||||||
Platform | OS | OS Version | |||||||
Product Version | Test_Spec_TS103096_V121 | ||||||||
Target Version | Test_Spec_TS103096_V121 | Fixed in Version | |||||||
Summary | 0007258: Possibly add a set of valid messages to derive negative tests from | ||||||||
Description | To ensure that the IUT discards messages for certain reasons, a set of valid standard-messages should be defined, e.g. for the three profiles: CAM, DENM, and Generic Signed Message. For example for TP_SEC_ITSS_RCV_CAM_07_01_BO, which defines that the IUT should discard a message which has a wrong its_aid set, there should be some generic implicit definition how all other attributes of the message should look like in order to ensure that the IUT discards the message for the reason which is specified in the TP and not for other reasons (e.g. an invalid signature or a missing header-field). Maybe it would be sufficient to have an extra chapter prior to the TPs, which defines valid standard messages for every security profile, where the other TPs are derived from and only the specified fields are changed. For the Generic Signed Message Profile, this could look similar like the one specified in TP_SEC_ITSS_RCV_GENMSG_01_01_BV: with { the IUT being in the 'authorized' state } ensure that { when { the IUT is receiving a SecuredMessage containing protocol_version indicating value '2' and containing header_fields[0] containing type indicating 'signer_info' and containing signer { containing type indicating 'certificate' and containing certificate (CERT_TS_AT_A) { containing subject_info.subject_type indicating 'authorization_ticket' (2) and containing subject_attributes['verification key'] (KEY) } } and containing header_fields [1] { containing type indicating 'generation_time' containing generation_time indicating CURRENT_TIME } and containing header_fields [2] { containing type indicating 'generation_location' containing generation_location } and containing header_fields[3] { containing type indicating 'its_aid' containing its_aid indicating 'AID_BEACON' } and containing payload_field { containing type indicating 'signed' containing data indicating length > 0 } and containing trailer_fields { containing single instance of type TrailerField { containing type indicating 'signature' containing signature verifiable using KEY } } } then { the IUT accepts the message } } | ||||||||
Tags | No tags attached. | ||||||||
Attached Files | |||||||||
Issue History | |||
Date Modified | Username | Field | Change |
16-12-2015 15:28 | Peter Felber | New Issue | |
16-12-2015 15:28 | Peter Felber | Status | new => assigned |
16-12-2015 15:28 | Peter Felber | Assigned To | => Denis Filatov |
04-01-2016 15:12 | Denis Filatov | Note Added: 0013652 | |
28-01-2016 17:25 | Denis Filatov | Checkin | |
28-01-2016 17:25 | Denis Filatov | Note Added: 0013776 | |
28-01-2016 17:25 | Denis Filatov | Status | assigned => resolved |
28-01-2016 17:25 | Denis Filatov | Resolution | open => fixed |
MantisBT 1.2.14 [^] Copyright © 2000 - 2024 MantisBT Team |