2020-07-28 Security Subcommittee Meeting Notes
- Paweł Pawlak
Please find below the Minutes of Meetings and recording for the SECCOM meeting that was held on 28th of July 2020.
Jira No | Summary | Description | Status | Solution |
|---|---|---|---|---|
| Harbor feedback from TSC | Solene provided presentation to TSC. We have a go decision for a PoC. LFN to be contacted to be in the loop for infra on which Harbor could be installed. Harbor v2 will be used and all images for Frankfurt will be scanned. Process for update was discussed (support for 1 release ba ck) and fixing vulnerability within 60 days period. | ongoing | To keep LFN in the loop for this PoC. To make a SCA tools (Nexus-IQ and Whitesource) demo for Fabian. |
Service Mesh progress | Slow but moving forward. Keyclock configuration job under migration. Automated deployment created for Cert and Cert Manager. Phase 1: modify the code fro the components to provide possibility to use or not AAF. Flow matrix: Still needs to be updated by some projects. | ongoing |
To remind PTLs about Flow Matrix inputs that are required from the community. | |
| Last PTLs call update | If a project is ran by a single company it has a status declined = project is at risk. Virtual event planned end of September: New Dates Open Networking & Edge Summit North America 2020 September 28 & 29, 2020 (Virtual Event is now confirmed) - https://lists.onap.org/g/onap-tsc/message/6513
| ongoing |
|
Packages upgrades | Progress tracked:
| ongoing | to be presented to PTLs | |
| Licences in ONAP | Waiting for TSC decision - feedback on impact provided by Krzysztof. | ongoing |
|
ONAP must implement IAM solutions | M1 scorecard to be provided by Fabian. | ongoing |
| |
|
|
|
|
|
| OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 4th OF AUGUST'20. | Topics proposed: |
|
|
Recording
SECCOM presentation
