Versions Compared

Old Version 1

changes.mady.by.user Pawel Pawlak

Saved on

compared with

New Version Current

changes.mady.by.user Amy Zwarico

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Jira No
SummaryDescriptionStatusSolution

ONES NA testimony 

Presentation by Amy and Samuli:

  • Isolation
  • Container Signing & Notaryv2
  • CIS Benchmarks
  • Operating a Service Mesh
  • Securing Managed Apps in a SMO
done

2020_ONES_SecuringANetworkVirtualizedWithContainersAndKubernetes-final.pptx


CII Badging Silver Level questions ranking
  1. Crypto Credentials Agility – ½ od apps in met and almost half not yet answered
  2. Implement Secure Design – 1/3 of projects did not answer 
  3. Crypto Weaknesses – tests to be applied (3 including Morgan)
ongoing




Morgan to be contacted.


PTL meeting summary

Prevention from zoombombing

SECCOM update

Reminder to PTLs to submit ticket to IT when retiring repositories, so that the repo may be archived.

ongoing

LFN Fall Technical Meetings October 13 - 15, 2020

Topics from SECCOM:

Service Mesh and packges upgrades.

Maintenance task force - members are welcome!

ongoingProject in maintenance mode shall provide support/update

ONAP Flow matrix and MVP  - next steps

No specific updates since January'20. MVP definition (components without ONAP would  not work) is crucial to indicate which flows are more important to start with.

We keep format of yaml file.

PTLs collaboration is important.

We focus initially on RUN TIme components.Meeting with Architecture Subcommittee.is planned later today

ongoing

Consultancy to be done with Architecture Subcommittee.

Feedback from DCAE PTL to be shared.

To be checked with Policy and CLAMP for flows 

Java version for CLAMP – open distro

Latest Open distro versions are 12 or 14 but not LTS.

We suggest to keep 11.0.1 for CLAMP.

ongoingComparison to be done between Java versions 11, 12 and 14. Vulnerabilities between 11.0.1 and 11.0.6 to be documented.O-RAN cipher recommendations

We put reference to O-RAN documentation for SSH and TLS Cyphers. 

Test to be shared. 

SSH recommendations: ATT-2020.05.03-STG-Chapter_O-RAN-Security-CR0004.docx

TLS recommendations: ATT-2020.06.24-STG-Chapter_O-RAN-Security-CR0008-v5.docx

ongoing

SSL test to be provided by Fabian - to be shared with Morgan.

Document to be posted on the Wiki.

PTL update

CII Badging – Tony

Issue with Windriver lab – Azure considered as an alternative

PTLs to complete exception requests for security-related requirements for Guilin

HELMv2 EoL – Krzysztof - https://helm.sh/blog/helm-v2-deprecation-timeline/ - next step – TSC meeting (this week), suggestion to migrate in RC0 (NEW DATE: October 12th

CII Badging Silver Level questions

We focus on application security Must haves:

  • Crypto Weaknesses
  • Implement Secure Design
  • Crypto credentials Agility

Open Networking & Edge Summit North America 2020
September 28 & 29, 2020 (Virtual Event)

Samuli and Amy will present a topic at ONES - presentation  to be shared with SECCOM OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 6th OF OCTOBER'20. 

MVP check list.

ONES NA  testimony

Recording:


ONAP Release milestones

RC0 - October 12th 

RC1 - Octpber 22nd


ongoing


OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 13th OF OCTOBER'20. 





Recording:

View file
name2020-10-06_SECCOM_week.mp4
height150

SECCOM presentation:

View file
name2020-10-06 ONAP Security Meeting - AgendaAndMinutes.pptx
height150
SECCOM presentation: