...
| Time | TopicTop | Description |
|---|---|---|
| 15min | Status of the Casablanca Priorities | |
| 30min | Outline Dublin Security Priorities | Create the Dublin security priorities draft to review with seccom and present to the TSC |
| 30min | Silver CII Badging | Determine the Silver requirements the projects need to focus on for Dublin |
| 30min | Relation between vulnerability and release gates | Enumerate the vulnerability mitigates tasks for each milestone and release candidate. This will help the projects schedule package upgrades, replacements, and the development of compensating controls early in the release cycle. |
| 1hr | Vulnerability Management Process Review | Lessons learned from the Beijing and Casablanca reviews Modify the review table to clarify the information the projects must provide Suggestion of how to improve the review process |
| 1hr | Risk Assessment Review | Review the findings from the risk assessments Discuss the questionnaire proposed by Robert to help identify risk in projectsReview the |
| 1hr | API Security | Review the ETSI API security recommendations and requirements |
| 1hr | MSB Security Requirements | Review MSB communication security and ensure that the transactions exchange between the different components are secure |
| 1hr | Security Guidelines | Develop a plan to document the security of ONAP |
| 30mins | Security by design | What guidelines are required to projects and the milestones to place security first and foremost.
|
| 1hr | Review of Action Items | |
| Discussion |
...