Hi Pat, Below is the list of Security items which I would like to pull into 1.0.0-dev branch for RC2 release.
1) Bug -- Fix issue w.r.t URI comparison when querystring is used (https://gerrit.iotivity.org/gerrit/#/c/3081/) This is required so that SRM can handle requests with URI's which have querystring attached. (Code Review -- Work In Progress) 2) Spec Gap -- Add check for expired symmetric keys (https://gerrit.iotivity.org/gerrit/#/c/3015/, https://gerrit.iotivity.org/gerrit/#/c/3009/) This is to support Credential Refresh mechanism for compliance with Security Spec 1.0. (Code Review -- Work In Progress) 3) Bug -- Removed the filter to add 'identity' info on selective connections (https://gerrit.iotivity.org/gerrit/#/c/2949/) Some stress testing use cases for AMS were failing due to this issue. (Code Review -- Work In Progress) 4) Bug -- Destroy Secure resources during system shut-down (https://gerrit.iotivity.org/gerrit/#/c/3137/) Fixed to make sure that Iotivity performs proper cleanup at system shutdown. (Code Review -- Finished) 5) Code Cleanup -- Updated log level of log messages in SRM module (https://gerrit.iotivity.org/gerrit/#/c/3139/) Improved logging in SRM module. (Code Review -- Finished) Thanks Sachin
