OWASP IoT-Security-Verification-Standard-ISVS issues

OWASP / IoT-Security-Verification-Standard-ISVS

OWASP IoT Security Verification Standard (ISVS)

Other

133 stars 49 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Jekyll config file for Git Pages

#93 windBlaze closed 1 year ago
1
Vocabulary alignment and typo fixes

#92 windBlaze closed 1 year ago
1
Changed wording of 4.1.2 to align with ASVS

#91 maximbaele closed 1 year ago
1
4.1.2: Align recommendation on TLS with ASVS

#90 maximbaele closed 1 year ago
1
3.2.9 RAM scrambling?

#89 attilaszia opened 2 years ago
1
V2: Missing anti-bruteforce & reauthentication requirements in authentication section

#88 windBlaze opened 2 years ago
2
Fix numbering in V4-Communication_Requirements.md

#87 windBlaze closed 2 years ago
1
Detect & Response set of requirements missing

#86 cbassem opened 3 years ago
1
Adds LoRaWAN requirements in V4

#85 windBlaze closed 3 years ago
0
Adds Zigbee requirements in V4.

#84 windBlaze closed 3 years ago
0
Replace GitBook

#83 scriptingxss closed 1 year ago
0
L3 requirements for Bluetooth and Wifi aren't high enough

#82 parsley72 opened 3 years ago
2
LoRaWAN security requirements requested

#81 cbassem closed 3 years ago
0
Missing Freeze and Mix & Match attack cases

#80 cbassem opened 3 years ago
1
Modify or remove 3.2.10 IMA

#79 scriptingxss closed 3 years ago
1
Update V3-Software_Platform_Requirements.md

#78 cetome closed 3 years ago
0
Added factors to check for when verifying ZigBee

#77 ahboon closed 3 years ago
6
Usability regarding WPS

#76 cetome closed 3 years ago
1
3.4.13. Authorization to update

#75 cetome closed 3 years ago
1
3.4.12. Secure communications

#74 cetome closed 3 years ago
4
2.3.5. Privacy Policy

#73 cetome closed 3 years ago
1
2.1.16 is confusing

#72 cetome closed 3 years ago
1
2.x Configuration backup

#71 cetome closed 3 years ago
1
Create 1.2.10 Secure update provisions

#70 cetome closed 3 years ago
2
Create 1.2.9. Integrity (and authenticity?) verification

#69 cetome closed 3 years ago
1
1.2.5. Remove debug for all interfaces

#68 cetome closed 3 years ago
4
1.2.3. Security-by-default

#67 cetome closed 3 years ago
4
Difficulties to check 1.1.1.

#66 cetome closed 1 year ago
5
Suggestions to improve consistency - Update "Using ISVS" Figure

#65 cetome opened 3 years ago
3
Password issue

#64 cbassem closed 3 years ago
2
Add info on how to deal with non conformities in "using the ISVS" chapter

#63 cbassem opened 3 years ago
1
Build workflow fixes

#62 windBlaze closed 3 years ago
1
Add Logging requirements to V1 (Ecosystem)

#61 windBlaze closed 3 years ago
0
Update V4-Communication_Requirements.md

#60 scradster closed 3 years ago
0
Update V3-Software_Platform_Requirements.md

#59 scradster closed 3 years ago
0
Update V2-User_Space_Application_Requirements.md

#58 scradster closed 3 years ago
0
Update V5-Hardware_Platform_Requirements.md

#57 scradster closed 3 years ago
0
Application and Ecosystem Design

#56 aksherif closed 3 years ago
4
Fix numbering before release

#55 cbassem opened 3 years ago
0
Vocabulary can be clarified

#54 cetome closed 1 year ago
3
5.1.8 is unclear and hard to verify

#53 scradster closed 3 years ago
2
1.2.9 should be moved below 5.1.7

#52 scradster closed 3 years ago
2
V5 HW Requirements clarification

#51 scradster closed 3 years ago
2
4.3.5 Reference to AES key size unclear

#50 scradster closed 3 years ago
2
2.1.5 and 4.2.7 are redundant

#49 scradster closed 3 years ago
1
2.4.1 and 4.2.2 are redundant

#48 scradster closed 3 years ago
3
4.1.3 doesn't specify what extensions of the certificate should be verified

#47 scradster closed 3 years ago
2
V4 Communication Requirements bullet point limited to BT and Wi-Fi

#46 scradster closed 3 years ago
2
3.1.1 limited to network locations over TCP/IP

#45 scradster closed 3 years ago
2
2.2.1 and 2.3.1 are redundant

#44 scradster closed 3 years ago
2