View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0009521 | 10000-002: Security | Spec | public | 2024-04-15 12:58 | 2024-04-17 15:45 |
| Reporter | dziegler | Assigned To | randyarmstrong | ||
| Priority | normal | Severity | feature | Reproducibility | N/A |
| Status | acknowledged | Resolution | open | ||
| Summary | 0009521: Introduce ECC-curve25519-AES-128-GCM Profile | ||||
| Description | To introduce greater flexibility and accommodate a wider range of use cases in OPC UA implementations, the introduction of an additional profile is suggested. The proposed profile, named "ECC-curve25519-AES-128-GCM," would utilize Curve25519 instead of nistP256 for key exchange, coupled with AES-128-GCM for encryption. This profile offers enhanced security while catering to scenarios where the use of nistP256 may not be ideal or desired. By incorporating the ECC-curve25519-AES-128-GCM profile, OPC UA implementations can stay ahead of security challenges and adapt to diverse deployment environments more effectively. This addition will provide users with a modern encryption alternative and ensure compatibility with evolving security standards. | ||||
| Tags | Security | ||||
| Commit Version | |||||
| Fix Due Date | |||||
|
|
Agreed that adding GCM profiles is best for the long term. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2024-04-15 12:58 | dziegler | New Issue | |
| 2024-04-15 12:58 | dziegler | Tag Attached: Security | |
| 2024-04-17 15:45 | randyarmstrong | Assigned To | => randyarmstrong |
| 2024-04-17 15:45 | randyarmstrong | Status | new => acknowledged |
| 2024-04-17 15:45 | randyarmstrong | Note Added: 0021134 |
