Issues
- 3
Vulnerability: Monotonically increasing version numbers not checked for increasing property (from Univ. of Iowa report)
#268 opened by Yasho-Bapat - 0
- 0
- 0
Disabmiguate "report"
#265 opened by hexsecs - 13
How do we address the security issues introduced by the use of aftermarket ECUs?
#200 opened by jhdalek55 - 0
link to standard on main README page is broken.
#262 opened by JustinCappos - 4
Potential Inconsistency in 2.1.0
#256 opened by PhilPNguy - 1
Terminology Usage in v2.1.0
#259 opened by PhilPNguy - 17
Approving the release of V.2.1.0
#252 opened by jhdalek55 - 17
- 8
- 23
How do we handle government updates?
#162 opened by pattivacek - 6
5.3.2.1 Requirement to peform time check
#247 opened by RobAirbotics - 18
Add references to TAP 13 (once it is accepted)
#198 opened by pattivacek - 4
Licensing for Uptane Standard
#243 opened by jhdalek55 - 0
Must all Identity keys be unique?
#244 opened by jhdalek55 - 4
Must all ECU identity keys be unique?
#241 opened by jhdalek55 - 20
Requiring "Secure Time"
#169 opened by allen-cain-tm - 28
Must all private keys be unique?
#174 opened by allen-cain-tm - 2
Add a SECURITY.md security policy to uptane?
#227 opened by hexsecs - 10
Add a note about Uptane costs
#223 opened by jhdalek55 - 6
- 3
Add note about python-TUF's CVE-2021-41131
#225 opened by mnm678 - 19
- 17
- 2
- 8
Make slow retrieval attack prevention a SHALL
#194 opened by mnm678 - 7
Change the requirement to verify that a downloaded image is the right size to a MUST
#181 opened by jhdalek55 - 3
Standardizing the use of MUST and SHALL
#214 opened by jhdalek55 - 4
Clarify threshold requirement
#209 opened by mnm678 - 2
Securely requesting user consent to apply updates that must go through the cloud
#206 opened by jhdalek55 - 2
Acting on attacks detected by a vehicle when communication with the cloud has been compromised
#207 opened by jhdalek55 - 4
- 18
Secondaries without secondary storage
#186 opened by pattivacek - 14
References to rejected TAP 5
#189 opened by mnm678 - 2
Slow retrieval attack protection
#190 opened by mnm678 - 3
Standard vs Standards
#185 opened by pattivacek - 2
Delegations: "target name must match"
#187 opened by pattivacek - 5
Standard Inconsistency
#175 opened by allen-cain-tm - 11
Device Report - Filename and Hash requirement
#177 opened by cwaldren - 5
- 4
- 5
Goals for Version 2.0.0
#156 opened by jhdalek55 - 6
Update hash function examples
#163 opened by zabbal - 10
How should we handle updates that are location-focused?
#161 opened by tkfu - 1
Render unofficial release version and post to website
#157 opened by tkfu - 5
Does partial verification require Root metadata?
#152 opened by pattivacek - 13
Snapshot check for Targets metadata filenames
#149 opened by pattivacek - 2
How to prevent infinite root.json fetches?
#153 opened by pattivacek - 8
Bug: Standard currently requires all metadata to be downloaded on each update check
#147 opened by tkfu