Version 1: Release Note 28 November 2014


The Update Security Credentials Command, Response and Alert - informative



Download 4.8 Mb.
Page166/258
Date03.04.2021
Size4.8 Mb.
1   ...   162   163   164   165   166   167   168   169   ...   258

The Update Security Credentials Command, Response and Alert - informative


The @UpdateSecurityCredentials.CommandPayload structure has four parts:

  • authorisingRemotePartyControl: which includes details of what kind of credential replacement this Command is, which Remote Parties are authorising it and information to support Protection Against Replay protections;

  • replacements: which is a list of new Certificates the Device is to store details from, along with which Trust Anchor Cell each set of details is to be stored in on the Device;

  • certificationPathCertificates: which is a list of Certification Authority Certificates the Device will need to use in checking that the replacement Certificates were properly issued; and

  • executionDateTime: which, if present, specifies the date-time at which the certificates in the CommandPayload are to be used to replace the credentials currently in use on the Device. If this field is not present, the Command shall be executed immediately. If this field has the value equivalent to ‘never’ (which is '99991231235959Z') the certificate replacement will never happen. This is to allow cancellation of future dated Commands. Note that future dating is not supported where certificates are being replaced in exception conditions.

The @UpdateSecurityCredentials.Response structure contains, for immediate execution commands, a list detailing the success of failure of each of the replacements, including details of the parties affected. For future dated commands, @UpdateSecurityCredentials.AlertPayload structure contains the list detailing the success, or failure, of each of the replacements, including details of the parties affected.

Section 13.3.5.11 contains narrative for each of the parts of these ASN.1 structures.

Section 18.2.1.2 provides an illustrative instantiation of @UpdateSecurityCredentials.CommandPayload and its corresponding DER encoding.


      1. Directory: government -> uploads -> system -> uploads -> attachment data -> file
        file -> Remove this if sending to pagerunnerr Page Title Light Rail Security Recommended Best Practice
        file -> 8 Section 1 : Sport
        file -> Notice of exercise of additional powers of seizure under Sections 50 or 51 of the Criminal Justice and Police Act 2001
        file -> Home office circular 004/2014 Powers to search for and seize invalid travel documents in Schedule 8 to the Anti-social Behaviour, Crime and Policing Act 2014
        file -> Consultation on the Royal Parks and Other Open Spaces (Amendment) (No. 2) Regulations 2012
        file -> Crown copyright 2012
        file -> This is the Report to Government by the Film Policy Review Panel The brief
        file -> Impact Assessment (IA)
        file -> Dcms/Wolfson Museums and Galleries Improvement Fund a public-Private Partnership (2002-2010)


        Share with your friends:
1   ...   162   163   164   165   166   167   168   169   ...   258




The database is protected by copyright ©essaydocs.org 2020
send message

    Main page