2021-05-25 Security Subcommittee Meeting Notes
- Paweł Pawlak
Please find below the Minutes of Meetings and recording for the SECCOM meeting that was held on 25th of May 2021.
Jira No | Summary | Description | Status | Solution |
|---|---|---|---|---|
| 2021 LFN Developer & Testing Forum June 2021-06-07 - 2021-06-10 | Register to LFN Developer & Testing Forum June Proposals: 2021 LFN Developer & Testing Forum June SECCOM proposal: ONAP: SECCOM activities for Istanbul release | ongoing | Please register to the event. |
| SonarCloud questions review | Permission problems - Jess to rely on community - e-mail was sent to Jess, waiting for her feedback. | ongoing | Jess to contact with Alex. Jess was reasked for an update. |
| (IT-22048) for direct vs. indirect dependencies with container scans | Feedback from Bengt to move on with ticket at Sonatype by opening a feature request. | ongoing | Amy will open a feature request at Sonatype. |
| DCAE Transformation stories in Istanbul | Introduction of common registry within ONAP deployment by Vijay and Krzysztof:  | ongoing | It was agreed that for Istanbul reelase DCAE implements BasicAuth and for next release as ulitimate goal HTTPS. Vijay to check authorization options with HelmMuseum. Vijay to contact OOM and Architecture Subcommittee with this proposal. |
| Analysis of the container logging requirements against the ATT&CK container matrix | Update provided by Bob,  | ongoing | slides 15 – 21 to be covered next week. |
| OUR NEXT SECCOM MEETING CALL WILL BE HELD ON 1st OF JUNE'21. | We will continue Bob's presentation on Analysis of the container logging requirements against the ATT&CK container matrix.
|
|
|
Recording:
SECCOM presentation:
