View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
000666810000-014: PubSubSpecpublic2021-03-18 07:212021-03-23 17:05
ReporterMatthias Damm Assigned ToMatthias Damm  
PriorityurgentSeveritymajorReproducibilityalways
Status closedResolutionfixed 
Summary0006668: Defintion of key derivation missing for PubSub security
Description

We miss a description for the key derivation similar to the definition in Part 6
https://reference.opcfoundation.org/v104/Core/docs/Part6/6.7.5/

TagsNo tags attached.
Commit Version
Fix Due Date

Relationships

related to 0006667 closedKarl Deiretsbacher 10000-007: Profiles PubSub Security Policies clarifications for signature keys 
related to 0004537 closedMatthias Damm 10000-014: PubSub UADP Message Security parameters unclear and incorrect 

Activities

Matthias Damm

2021-03-23 16:05

developer   ~0014054

Since the Security Key Server is the only source of keys and the SKS has to ensure the quality of the key data (see also 0006699) and also the right length of the key data depending on the SecurityPolicy, key derivation in the PubSub applications makes no sense.

Nevertheless the following enhancements were made in OPC 10000-14 - UA Specification Part 14 - PubSub 1.05.0 Draft32.docx

8.4 GetSecurityKeys Method
Method argument keys:
Replace
This key is not used directly since the protocol associated with the PubSubGroup(s) specifies an algorithm to generate distinct keys for different types of cryptography operations. Further details are defined in 7.2.2.4.3.
with
This key is used according to the SecurityPolicy identified by the SecurityPolicyUri and the protocol associated with the PubSubGroup(s). Further details are defined in 7.2.2.4.3.

7.2.2.4.3 UADP message security
7.2.2.4.3.1 General
Replace
The keys used to encrypt and sign messages are returned from the GetSecurityKeys method (see 8.4).
with
The keys used to encrypt and sign messages are extracted from the key data returned from the GetSecurityKeys method (see 8.4).

Jim Luth

2021-03-23 17:05

administrator   ~0014056

Agreed to changes in telecon.

Issue History

Date Modified Username Field Change
2021-03-18 07:21 Matthias Damm New Issue
2021-03-18 07:21 Matthias Damm Status new => assigned
2021-03-18 07:21 Matthias Damm Assigned To => Randy Armstrong
2021-03-18 07:22 Matthias Damm Relationship added related to 0006667
2021-03-18 07:22 Matthias Damm Relationship added related to 0004537
2021-03-23 14:56 Matthias Damm Assigned To Randy Armstrong => Matthias Damm
2021-03-23 16:05 Matthias Damm Status assigned => resolved
2021-03-23 16:05 Matthias Damm Resolution open => fixed
2021-03-23 16:05 Matthias Damm Note Added: 0014054
2021-03-23 17:05 Jim Luth Status resolved => closed
2021-03-23 17:05 Jim Luth Fixed in Version => 1.05
2021-03-23 17:05 Jim Luth Note Added: 0014056