From 136213d1bda21e9d47df7737ac799ecce18ee8d1 Mon Sep 17 00:00:00 2001 From: MariusBaldovin Date: Thu, 31 Oct 2024 10:09:51 +0000 Subject: [PATCH 1/2] updated tls/README.md --- modules/test/tls/README.md | 13 +++++++++++-- modules/test/tls/conf/module_config.json | 4 ++-- 2 files changed, 13 insertions(+), 4 deletions(-) diff --git a/modules/test/tls/README.md b/modules/test/tls/README.md index ba1c6b1db..b72a04792 100644 --- a/modules/test/tls/README.md +++ b/modules/test/tls/README.md @@ -14,5 +14,14 @@ Within the ```python/src``` directory, the below tests are executed. | ID | Description | Expected behavior | Required result |---|---|---|---| -| security.tls.v1_2_server | Check the device web server is TLSv1.2 minimum and the certificate is valid | TLS 1.2 certificate is issues to the client when accessed | Required | -| security.tls.v1_2_client | Device uses TLS with connections to external services on any port | The packet indicates a TLS connection with at least TLS v1.2 and support for ECDH and ECDSA ciphers | Required | \ No newline at end of file + +| security.tls.v1_0_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS 1.0 and support | Informational | + +| security.tls.v1_2_server | Check the device web server TLS 1.2 and the certificate is valid | TLS 1.2 certificate is issues to the web browser client when accessed | Required if Applicable | + +| security.tls.v1_2_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS v1.2 and support for ECDH and ECDSA ciphers | Required if Applicable | + +| security.tls.v1_3_server | Check the device web server TLS 1.3 and the certificate is valid | TLS 1.3 certificate is issued to the web browser client when accessed | Informational | + +| security.tls.v1_3_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS 1.3 | Informational | + diff --git a/modules/test/tls/conf/module_config.json b/modules/test/tls/conf/module_config.json index 7058129f2..4d0c9005a 100644 --- a/modules/test/tls/conf/module_config.json +++ b/modules/test/tls/conf/module_config.json @@ -23,7 +23,7 @@ }, { "name": "security.tls.v1_2_server", - "test_description": "Check the device web server TLS 1.2 & certificate is valid", + "test_description": "Check the device web server TLS 1.2 and the certificate is valid", "expected_behavior": "TLS 1.2 certificate is issued to the web browser client when accessed", "recommendations": [ "Enable TLS 1.2 support in the web server configuration", @@ -61,7 +61,7 @@ }, { "name": "security.tls.v1_3_server", - "test_description": "Check the device web server TLS 1.3 & certificate is valid", + "test_description": "Check the device web server TLS 1.3 and the certificate is valid", "expected_behavior": "TLS 1.3 certificate is issued to the web browser client when accessed", "recommendations": [ "Enable TLS 1.3 support in the web server configuration", From 16d6fc4390a4be852f5b3820f396e89d372a1680 Mon Sep 17 00:00:00 2001 From: Marius <86727846+MariusBaldovin@users.noreply.github.com> Date: Thu, 31 Oct 2024 10:13:19 +0000 Subject: [PATCH 2/2] Update README.md Signed-off-by: Marius <86727846+MariusBaldovin@users.noreply.github.com> --- modules/test/tls/README.md | 5 ----- 1 file changed, 5 deletions(-) diff --git a/modules/test/tls/README.md b/modules/test/tls/README.md index b72a04792..f0e0119af 100644 --- a/modules/test/tls/README.md +++ b/modules/test/tls/README.md @@ -14,14 +14,9 @@ Within the ```python/src``` directory, the below tests are executed. | ID | Description | Expected behavior | Required result |---|---|---|---| - | security.tls.v1_0_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS 1.0 and support | Informational | - | security.tls.v1_2_server | Check the device web server TLS 1.2 and the certificate is valid | TLS 1.2 certificate is issues to the web browser client when accessed | Required if Applicable | - | security.tls.v1_2_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS v1.2 and support for ECDH and ECDSA ciphers | Required if Applicable | - | security.tls.v1_3_server | Check the device web server TLS 1.3 and the certificate is valid | TLS 1.3 certificate is issued to the web browser client when accessed | Informational | - | security.tls.v1_3_client | Device uses TLS with connection to an external service on port 443 (or any other port which could be running the webserver-HTTPS) | The packet indicates a TLS connection with at least TLS 1.3 | Informational |