[openstack-dev] [kolla][security] Finishing the job on threat analysis for Kolla
Steven Dake (stdake)
stdake at cisco.com
Tue May 24 16:16:00 UTC 2016
Rob and Doug,
At Summit we had 4 hours of highly productive work producing a list of "things" that can be "threatened". We have about 4 or 5 common patterns where we follow the principle of least privilege. On Friday of Summit we produced a list of all the things (in this case deployed containers). I'm not sure who, I think it was Rob was working on a flow diagram for the least privileged case. From there, the Kolla coresec team can produce the rest of the diagrams for increasing privileges.
I'd like to get that done, then move on to next steps. Not sure what the next steps are, but lets cover the flow diagrams first since we know we need those.
Regards
-steve
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20160524/32d955b0/attachment.html>
More information about the OpenStack-dev
mailing list