Skip to content
This repository has been archived by the owner on Dec 18, 2024. It is now read-only.

Commit

Permalink
Adapt documentation
Browse files Browse the repository at this point in the history
  • Loading branch information
lukasmittag committed Mar 11, 2024
1 parent 26458c1 commit cc2e0a6
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 5 deletions.
4 changes: 4 additions & 0 deletions kuksa_databroker/doc/behavior.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
# Runtime behavior and potential attacks
The implementation of KUKSA databroker shall represent the latest value of a ```Datapoint```. Therefore the databroker always sets a ```timestamp``` for a ```Datapoint```. This means if a new value comes in it overwrites the older value. We opted for this behavior because a actuator/provider/application can have no access to a system time. For some use cases it could be interesting to provide a timestamp set by the actuator/provider/application. For this we added a so called source timestamp (short ```source_ts```) to the ```Datapoint``` class. This source timestamp is optional and per default set to None.

If an attacker gets an authorized connection to the databroker he can set the source_timestamp and overwrite the value with a new one. But for this he/she needs read and write access through JWT tokens. If a provider decides to work with ```source_ts``` of a ```Datapoint``` than it should be clear that they can be false/outdated.
5 changes: 0 additions & 5 deletions kuksa_databroker/doc/timestamp.md

This file was deleted.

0 comments on commit cc2e0a6

Please sign in to comment.