Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Key Elements of a Trustworthy System #20

Closed
ultrasaurus opened this issue Apr 13, 2018 · 7 comments
Closed

Key Elements of a Trustworthy System #20

ultrasaurus opened this issue Apr 13, 2018 · 7 comments
Labels
inactive No activity on issue/PR usecase/personas Related to usecases and personas of CN security

Comments

@ultrasaurus
Copy link
Member

The working group will outline the common problem of the fragmented and isolated security in distributed infrastructure, refine the requirements for a solution, and discuss the constraints and tradeoffs.

We will initially collaborate via google doc, and later turn into a more formal recommendation. For now, please add comments, ideas and question to the doc linked below:

"Key Elements of a Trustworthy System” google doc
@justincormack
Copy link
Collaborator

I cant access that doc - I requested access but I wonder if there is an undocumented Google Group for Safe as well?

@rficcaglia rficcaglia mentioned this issue Apr 23, 2019
Closed
@lumjjb lumjjb added the usecase/personas Related to usecases and personas of CN security label May 30, 2019
@stale
Copy link

stale bot commented Mar 17, 2020

This issue has been automatically marked as inactive because it has not had recent activity.

@stale stale bot added the inactive No activity on issue/PR label Mar 17, 2020
@TheFoxAtWork TheFoxAtWork mentioned this issue Sep 3, 2020
Closed
14 tasks
@TheFoxAtWork
Copy link
Collaborator

@pragashj recommends deferring until landscape project is complete

@stale stale bot removed the inactive No activity on issue/PR label Oct 28, 2020
@pragashj
Copy link
Collaborator

Should we see how much of this can be incorporated in to the landscape?
#348
If not, we can work to create more clarity on this issue to see what we can cover here that is different from whitepaper and landscape.

@cseader
Copy link
Contributor

cseader commented Oct 28, 2020

What is the overall purpose of this? It seems the white paper addresses the needs here.

@stale
Copy link

stale bot commented Dec 27, 2020

This issue has been automatically marked as inactive because it has not had recent activity.

@stale stale bot added the inactive No activity on issue/PR label Dec 27, 2020
@lumjjb
Copy link
Collaborator

lumjjb commented Jul 14, 2021

Addressed by Cloud Native Security Whitepaper https://github.com/cncf/tag-security/tree/main/security-whitepaper

@lumjjb lumjjb closed this as completed Jul 14, 2021
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 7, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
626e6e5 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
96df65a 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
1e181c9 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Signed-off-by: Michael-Susu12138 <78223776+Michael-Susu12138@users.noreply.github.com>
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
c9a3e14 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Signed-off-by: Michael-Susu12138 <78223776+Michael-Susu12138@users.noreply.github.com>
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
68e5583 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Signed-off-by: Michael-Susu12138 <78223776+Michael-Susu12138@users.noreply.github.com>
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
7c63f78 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Signed-off-by: Michael-Susu12138 <78223776+Michael-Susu12138@users.noreply.github.com>
Michael-Susu12138 added a commit to Michael-Susu12138/tag-security that referenced this issue Dec 12, 2023
@Michael-Susu12138
Squashed Commits for TiKV self-assessment analysis
640ea48 
repo transfer

Fixed a minor spelling error

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a section with suggested action items

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

formatting

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added an embedded link to the TiKV-BR

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to security configuration page

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added a link for where it says there is no built-in on-disk encryption in TiKV

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to RocksDB

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Added link to gRPC

Signed-off-by: dominiqueeberhard2 <144503467+dominiqueeberhard2@users.noreply.github.com>

Bump postcss and autoprefixer in /website/themes/docsy/userguide (cncf#1118)

Bumps [postcss](https://github.com/postcss/postcss) to 8.4.31 and updates ancestor dependency [autoprefixer](https://github.com/postcss/autoprefixer). These dependencies need to be updated together.

Updates `postcss` from 7.0.39 to 8.4.31
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.4.31)

Updates `autoprefixer` from 9.5.0 to 10.4.16
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@9.5.0...10.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
- dependency-name: autoprefixer
  dependency-type: direct:development
...

Group ID: Group cncf#20 - TiKV

Co-authored-by: Shivani Gandhi sg8013@nyu.edu
Co-authored-by: Yifang(Michael) Chen yc4557@nyu.edu
Co-authored-by: Dominique Eberhard de814@nyu.edu
Co-authored-by: David Zhang dz2188@nyu.edu
Signed-off-by: Michael-Susu12138 <78223776+Michael-Susu12138@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
inactive No activity on issue/PR usecase/personas Related to usecases and personas of CN security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@ultrasaurus @justincormack @cseader @lumjjb @pragashj @TheFoxAtWork