[New Model]: Certificate Signing Requests 1.0.0 #705
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Validation Report for io.catenax.ecu_certificates/1.0.0/EcuCertificates.ttlInput model is valid |
|
modeling_team |
johannsvarela
changed the title
Validation Report for io.catenax.ecu_certificates/1.0.0/EcuCertificates.ttlInput model is valid |
johannsvarela
changed the title
Validation Report for io.catenax.ecu_certificates/1.0.0/EcuCertificates.ttlInput model is valid |
Validation Report for io.catenax.ecu_certificates/1.0.0/EcuCertificates.ttlInput model is valid |
Validation Report for io.catenax.certificate_signing_requests/1.0.0/CertificateSigningRequests.ttlInput model is valid |
Validation Report for io.catenax.ecu_certificates/1.0.0/EcuCertificates.ttlInput model is valid |
Validation Report for io.catenax.certificate_signing_requests/1.0.0/CertificateSigningRequests.ttlInput model is valid |
Validation Report for io.catenax.certificate_signing_requests/1.0.0/CertificateSigningRequests.ttlInput model is valid |
johannsvarela
changed the title
|
@agg3fe @catroest Since we will urgently need this aspect model (for several internal implementations), we wanted to ask you whether it would be possible to review this PR by Monday 22.04 so that we can get MS2 & MS3 approval next week? The new aspect model is about information that is needed to validate and certificate an ECU against the encrypted CSR data. For more details have a look at issue #701 or the descriptions within the aspect model. |
catroest
suggested changes
Apr 16, 2024
|
|
||
| :subjectSerialNumber a samm:Property; | ||
| samm:preferredName "Subject Serial Number"@en; | ||
| samm:description "The serial number of the assembly part generated by the manufacturer that is used to identifiy the ECU component in a unique way. The subject serial number is identical to the serial number (partInstanceId) specified in the aspect model SerialPart.\n\nThe value for the subjectSerialNumber is always the same for an ECU and its attached CSRs, but is required to additionally validate each individual CSR. "@en; |
|
|
||
| :CertificateSigningRequests a samm:Aspect; | ||
| samm:preferredName "Certificate Signing Requests"@en; | ||
| samm:description "The certificate signing requests model contains the essential information needed to request specific certificates for a unique ECU component via a Certificate Signing Request (CSR) and to validate and certificate the ECU against this data. "@en; |
|
|
||
| :certificateSigningRequestList a samm:Property; | ||
| samm:preferredName "Certificate Signing Request List"@en; | ||
| samm:description "Describes one or more Certificate Singing Requests (CSR). Each set entry contains additional information (e.g. subjectCommonName, subjectLocality, etc.) in readable form, which is otherwise part of the encrypted CSR. "@en; |
|
|
||
| :subjectCommonName a samm:Property; | ||
| samm:preferredName "Subject Common Name\t"@en; | ||
| samm:description "Describes the common name on where the certificate is requested. "@en; |
|
|
||
| :subjectLocality a samm:Property; | ||
| samm:preferredName "Subject Locality"@en; | ||
| samm:description "Provides information about the specific type of the ECU that will be certified. \n\nThe value for the subjectLocality is always the same for an ECU and its attached CSRs, but is required to additionally validate each individual CSR. "@en; |
|
|
||
| :certificateSigningRequest a samm:Property; | ||
| samm:preferredName "Certificate Signing Request"@en; | ||
| samm:description "A CSR (Certificate Signing Request) is a 64-based PEM formatted and encrypted message to request and receive a digital certificate. The CSR validates the information required by a specific certification authority (CA) to issue the associated digital certificate.\n\nThe CSR consists of encrypted data, which can include, for example, basic information about the ECU and its manufacturer (common name, company, organizational unit, country, city/town, etc.), information about the public key attached to the certificate, as well as information on the key type and length. "@en; |
|
|
||
| :subjectSerialNumber a samm:Property; | ||
| samm:preferredName "Subject Serial Number"@en; | ||
| samm:description "The serial number of the assembly part generated by the manufacturer that is used to identifiy the ECU component in a unique way. The subject serial number is identical to the serial number (partInstanceId) specified in the aspect model SerialPart.\n\nThe value for the subjectSerialNumber is always the same for an ECU and its attached CSRs, but is required to additionally validate each individual CSR. "@en; |
| samm:characteristic :CertificateSigningRequestCharacteristic; | ||
| samm:exampleValue "MIIC2TCCAToCAQAwgZwxEzARBgNVBAgTClByb2R1Y3Rpb24xDDAKBgNVBAcMA0FUTTESMBAGA1UEChMJQk1XIEdyb3VwMRcwFQYDVQQLEw5WZWhpY2xlUEtJLUVDVTEXMBUGA1UEAxMOSVBzZWMtaW50ZXJuYWwxMTAvBgNVBAUTKEVDVS1VSUQ6QzAwMDgyNDI3MUREQTYwMDAwMDAwMDAwMjdBQTg0MjQwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAShNm4y5Mdzu4b9xDW3TfBZr". | ||
|
|
||
| :subjectSerialNumber a samm:Property; |
There was a problem hiding this comment.
should this link or reference through a "see-link" to the serial part aspect?
agg3fe
reviewed
Apr 16, 2024
|
|
||
| :subjectSerialNumber a samm:Property; | ||
| samm:preferredName "Subject Serial Number"@en; | ||
| samm:description "The serial number of the assembly part generated by the manufacturer that is used to identifiy the ECU component in a unique way. The subject serial number is identical to the serial number (partInstanceId) specified in the aspect model SerialPart.\n\nThe value for the subjectSerialNumber is always the same for an ECU and its attached CSRs, but is required to additionally validate each individual CSR. "@en; |
agg3fe
requested changes
Apr 16, 2024
Validation Report for io.catenax.certificate_signing_requests/1.0.0/CertificateSigningRequests.ttlInput model is valid |
agg3fe
added
MS2_Approved
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Today, certificates for ECUs need to be provided by first and second tiers to the OEM. This is done by proprietary interfaces with the use of the CSR (Certificate Signing Request) approach. With this new aspect model, this process should be standardised based on the digital twins in accordance to the industry core. This will enable a data sovereign solution and reduce interfaces.
Closes #701
MS2 Criteria
(to be filled out by PR reviewer)
DismantlerIdandDismantlerNameuse an EntityDismantlerwith the propertiesnameandidor use a URN likeio.catenax.dismantler:0.0.1)preferredNameanddescriptionare not the samepreferredNameshould be human readable and follow normal orthography (e.g., no camel case but normal word separation)MS3 Criteria
(to be filled out by semantic modeling team before merge to main-branch)