Presentation is loading. Please wait.

Presentation is loading. Please wait.

CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson

Published byNorma Joan Eaton Modified over 6 years ago

Similar presentations

Presentation on theme: "CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson"— Presentation transcript:

1 CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson
September 20, 2017

2 The CII Badging Program
Core Infrastructure Initiative Website: Evaluate how projects follow best practices using voluntary self- certification Three levels: Passing, Silver and Gold LF target level recommendation is Gold ONAP Pilot Project: CLAMP

3 The Questionnaire Edition is limited to a subset of users
Main editor can nominate other users as editors Divided into clear sections For each section, a set of questions is provided, addressing best practices relating to the parent section Each question asks if a criterion is Met, unmet, not applicable, or unknown Criteria are generally high-level as targeted to best practices, e.g. “The project MUST have one or more mechanisms for discussion” “The project SHOULD provide documentation in English”

4 The Goals Give confidence in the project being delivered
By quickly knowing what the project supports See what should be improved Self-questioning helps project stakeholders identifying strengths and weaknesses, do’s and don'ts Align all projects using the same ratings Makes projects connected together to follow the same practices Call for continuous improvement Increase self rating and reach better software quality

5 To Be Discussed Introduce test coverage rules: how many tests should be added for each code changes Digital signature: use digital signature in delivered packages (already in the plan?) Vulnerability fixing SLA: vulnerabilities should be fixed within 60 days Security mechanisms Which cryptographic algorithms to use to encrypt password The security mechanisms within the software produced by the project SHOULD implement perfect forward secrecy for key agreement protocols so a session key derived from a set of long-term keys cannot be compromised if one of the long-term keys is compromised in the future. If the software produced by the project causes the storing of passwords for authentication of external users, the passwords MUST be stored as iterated hashes with a per-user salt by using a key stretching (iterated) algorithm (e.g., PBKDF2, Bcrypt or Scrypt). The security mechanisms within the software produced by the project MUST generate all cryptographic keys and nonces using a cryptographically secure random number generator, and MUST NOT do so using generators that are cryptographically insecure

6

Download ppt "CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson"

Similar presentations

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
SSL AND E- COMMERCE S ECURITY gz2155 Guangwei Zhang.

SSL AND E- COMMERCE S ECURITY gz2155 Guangwei Zhang.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.

Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.
Page 1 Secure Communication Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.

Page 1 Secure Communication Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.
Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.

Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.
1 Chapter 8 Copyright 2003 Prentice-Hall Cryptographic Systems: SSL/TLS, VPNs, and Kerberos.

1 Chapter 8 Copyright 2003 Prentice-Hall Cryptographic Systems: SSL/TLS, VPNs, and Kerberos.
Practices in Security Bruhadeshwar Bezawada. Key Management Set of techniques and procedures supporting the establishment and maintenance of keying relationships.

Practices in Security Bruhadeshwar Bezawada. Key Management Set of techniques and procedures supporting the establishment and maintenance of keying relationships.
Key Management. Session and Interchange Keys  Key management – distribution of cryptographic keys, mechanisms used to bind an identity to a key, and.

Key Management. Session and Interchange Keys  Key management – distribution of cryptographic keys, mechanisms used to bind an identity to a key, and.
Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Web Security.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Web Security.
7.6 Secure E-mail Network Security / G.Steffen1. In This Section Threats to E-mail E-mail Protection List Overview of Encrypted E-mail Processing Example.

7.6 Secure Network Security / G.Steffen1. In This Section Threats to Protection List Overview of Encrypted Processing Example.
 Encryption provides confidentiality  Information is unreadable to anyone without knowledge of the key  Hashing provides integrity  Verify the integrity.

 Encryption provides confidentiality  Information is unreadable to anyone without knowledge of the key  Hashing provides integrity  Verify the integrity.

Similar presentations

Ads by Google