Reputation: 1351
DDS Security: How are key generated for different publisher
After reading the OMG specification about secure DDS: https://www.omg.org/spec/DDS-SECURITY/1.1/
I understood that DDS participants will authenticate each others though a handshake and deduce a secret using DH. This shared secret is used for the publisher (writer) to share the key used to encrypt the messages published in order for a subscriber (reader) to decrypt the message.
However, what happens if there are multiple publishers for the same topic?
- Do they agree on the same key?
- Do they generate they own key and send them to each reader ?
I am expecting the first option, but could not find confirmation within the OMG specification.
Upvotes: 3
Views: 174
Answers (1)
Reputation: 17373
However, what happens if there are multiple publishers for the same topic?
Each DataWriter (not Publisher) generates its own symmetric key which gets shared with all its matched DataReaders. The fact that multiple DataWriters may be writing to the same Topic does not change this -- each of them generates their own key and uses it to protects its own updates.
Note that this is the behavior as prescribed by the so-called built-in plugins as defined in Chapter 9 of the specification that you mentioned. These are defined to provide out-of-the-box functionality with interoperability between vendors. Customized plugins may behave differently.
Upvotes: 2
Related Questions
- What is DCPS and what does it have to to with DDS?
- How to implement request response mechanism in DDS?
- Interoperability in DDS
- DDS Security certificate storage
- What's the difference between DDS and SOME/IP?
- what should be the DDS communication structure?
- How to model in idl for DDS
- DDS data distribution service opensplice
- DDS Keyed Topics
- How to append Published DDS content in existing file on Subscriber side?