[NETCONF-643] NetconfMessageToXmlEncoder can leak sensitive data Created: 13/Sep/19 Updated: 05/Jun/20 Resolved: 05/Jun/20 |
|
| Status: | Resolved |
| Project: | netconf |
| Component/s: | netconf |
| Affects Version/s: | None |
| Fix Version/s: | Aluminium, Sodium SR3, Magnesium SR2 |
| Type: | Improvement | Priority: | Medium |
| Reporter: | Robert Varga | Assignee: | Robert Varga |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Description |
|
Enabling tracing on XMLEncoder can end up leaking confidential data carried in the XML messages. Think about what can we done to control confidentiality of this information. |
| Comments |
| Comment by Robert Varga [ 13/Sep/19 ] |
|
This probably needs to some sort of platform capability, where messages holding potentially-sensitive data are tagged. Such messages should be subjected (potentially) to being re-routed to secure storage. |