Project

General

Profile

Actions
Copy link

Feature #5516

closed
VJ JL

tls: client cert detection

Feature #5516: tls: client cert detection

Added by Victor Julien over 3 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
7.0.0-rc1
Effort:
Difficulty:
Label:

Description

Update various cert detection keywords to support client certs.

Related issues 1 (0 open1 closed)

Related to Suricata - Feature #1096: tls: client certificate handlingClosedVictor JulienActions

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #1

  • Target version changed from TBD to 7.0.0-rc1

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #2

  • Priority changed from Normal to High

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #3

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Jeff Lucovsky

JL Updated by Jeff Lucovsky over 3 years ago Actions
Copy link
 #4

These already check the client cert (depending on direction)
- tls.subject
- tls.issuerdn
- tls.fingerprint
- tls_cert_notbefore
- tls_cert_notafter
- tls_cert_expired
- tls_cert_valid

These do not check the client cert and require update:
- tls.cert_fingerprint
- tls.cert_issuer
- tls.certs
- tls.cert_serial
- tls.cert_subject

Not sure about
- tls.store

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #5

  • Parent task deleted (#1096)

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #6

  • Related to Feature #1096: tls: client certificate handling added

JL Updated by Jeff Lucovsky over 3 years ago Actions
Copy link
 #7

  • Status changed from Assigned to In Review

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #9

  • Status changed from In Review to Closed
  • Priority changed from High to Normal
Actions
Copy link

Also available in: PDF Atom