Presentation is loading. Please wait.

Presentation is loading. Please wait.

ONAP security meeting 2017-10-11.

Published byVeronica Banks Modified over 6 years ago

Similar presentations

Presentation on theme: "ONAP security meeting 2017-10-11."— Presentation transcript:

1 ONAP security meeting

2 Agenda Information Update
- S3P (carrier grade) - security aspects. Re: Carrier Grade Requirements (consolidated) common authentication/authorization service (amy) Topics to advance Credential protection and management Static Code Scanning AOB

3 “Carrier Grade” Security Level 0: None Level 1: CII Passing badge Level 2: CII Silver badge, plus: All internal/external system communications shall be able to be encrypted. All internal/external service calls shall have common role-based access control and authorization. Level 3: CII Gold badge  Meeting reflection From a release perspective we could have a % per release Question: Will the arch team follow-up on this or does the seccom team do that. .

4 common authentication/authorization service (amy)
Meeting notes Using the credentials for secure communication Create entry in the best practices development wiki for secure communication.

5 Next Week Feedback on maturity of overall platform.
Credential Management. Try to close. Static code scanning f/b from coverity.

6 CII Badging programe feedback from clamp
The slides were presented. The self assessment approach is appreciated Facilitated the project to improve its way of working Was seen that it can provide an common terminology and approach for security issues in ONAP CLAMP sits at 83% approval for passing level, with some of the open issues an ongoing discussion in the security sub-committee Need to come back to code coverage question.

7 DevEvent feedback About 10 people there, not too bad given agenda competition and flexibility. Agenda move meant that we missed feedback on CII badging program Frank Brockners raised that OPNFV has a basic scan for obvious vulnerabilities:

8 DevEvent feedback Phil presented nexus IQ - informs of known vulnerabilities Note: We need a proposed process for this s.

9 DevEvent Feedback Credential management: Static Code scanning
Questions: What about user pwd/credential What about the credential for interaction with other systems. How to the plugability to the credential management. Static Code scanning How to introduce

10 DevEvent Other questions that came up
Describe how to have secure communication between onap components Describe examples of security communication between ONAP and other systems (e.g. credentials to get access to the VIM). Describe the User provisioning and rols

11 Other idea Some questions we have are specific to ONAP
Some cannot be new. Should we have a cross org security share’n’care meeting?

Download ppt "ONAP security meeting 2017-10-11."

Similar presentations

Commissioning Dignity in Care Homes Clare Henderson Asst. Director Planning, Independence & Older Adults Sue Newton Commissioning Manager Older Adults.

Commissioning Dignity in Care Homes Clare Henderson Asst. Director Planning, Independence & Older Adults Sue Newton Commissioning Manager Older Adults.
Chapter 3 Preparing and Evaluating a Research Plan Gay and Airasian

Chapter 3 Preparing and Evaluating a Research Plan Gay and Airasian
CE0825 Object-Oriented Programming 2 © Allan C. Milne Abertay University v14.11.24.

CE0825 Object-Oriented Programming 2 © Allan C. Milne Abertay University v
CS 325: Software Engineering April 14, 2015 Software Security Security Requirements Software Security in the Life Cycle.

CS 325: Software Engineering April 14, 2015 Software Security Security Requirements Software Security in the Life Cycle.
Filling in your Active Citizenship Profile

Filling in your Active Citizenship Profile
Senate Meeting Oct 3, 2012. Call to Order 1. Call To Order 2. Approval of Agenda 3. Approval of Minutes 4. Intro to GPSS 5. Parliamentary- Procedure Overview.

Senate Meeting Oct 3, Call to Order 1. Call To Order 2. Approval of Agenda 3. Approval of Minutes 4. Intro to GPSS 5. Parliamentary- Procedure Overview.
Outline Your one-minute feedback from last week

Outline Your one-minute feedback from last week
ONAP security meeting 2017-09-06.

ONAP security meeting
OASIS Next Generation Project Summary

OASIS Next Generation Project Summary
Tool Chain Architecture

Tool Chain Architecture
CII badging program for ONAP ONAP security committee Stephen Terrill

CII badging program for ONAP ONAP security committee Stephen Terrill
ONAP security meeting 2017-08-02.

ONAP security meeting
ONAP security meeting 2017-05-24.

ONAP security meeting
ONAP security meeting 2017-09-22.

ONAP security meeting
Proposal for ONAP Development Best Practices Gildas Lanilis – ONAP Release Manager June 23 , 2017.

Proposal for ONAP Development Best Practices Gildas Lanilis – ONAP Release Manager June 23 , 2017.
ONAP security meeting 2017-08-30.

ONAP security meeting
Joint ONAP security subcommittee – SDC and VNFSDK project meeting

Joint ONAP security subcommittee – SDC and VNFSDK project meeting
CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson

CII Badging Program for CLAMP Xue Gao, Pierre Close, Anael Closson
Sign Off Mentor Preparation

Sign Off Mentor Preparation
Topics Introduction Structure and way of working

Topics Introduction Structure and way of working

Similar presentations

Ads by Google