PR for platform analysis template #455 #454#662
Merged
PandaeDo merged 3 commits intoeclipse-score:mainfrom Apr 28, 2026
Merged
Conversation
NarasipurRohini
requested review from
PandaeDo,
aschemmel-tech,
masc2023 and
pahmann
as code owners
|
The created documentation from the pull request is available at: docu-html |
masc2023
reviewed
Apr 17, 2026
| ~~~~~~~~~~~~~~~~~~~~ | ||
| The assumptions of use shall be documented under :need:`wp__platform_security_manual`. | ||
|
|
||
| .. To be filled as part of https://github.com/eclipse-score/process_description/issues/452. |
masc2023
reviewed
Apr 17, 2026
| .. To be filled as part of https://github.com/eclipse-score/process_description/issues/452. | ||
|
|
||
|
|
||
| .. To be filled as part of https://github.com/eclipse-score/process_description/issues/452. |
PandaeDo
requested changes
Apr 21, 2026
| #. Stakeholder security requirements definition | ||
| #. Security assumptions definition | ||
|
|
||
| Threat and Risk Identification Template |
Contributor
There was a problem hiding this comment.
If possible you can have a look on the Safety Analysis and change it in that way we did there. So that we have a dedicated list of threats and risks that might be applicable for a middleware.
This could be also a further development of the Security Analysis.
Contributor
Author
There was a problem hiding this comment.
Yes, I agree,. I added an .. attention:: section and will either get back to it myself or ask Venkat to add it after he finishes the platform analysis
| - <Rationale for mitigation> | ||
|
|
||
| * - 2 | ||
| - Eg: Unauthorized access to the onboard diagnostic stack from external interfaces |
Contributor
There was a problem hiding this comment.
Suggested change
| - Eg: Unauthorized access to the onboard diagnostic stack from external interfaces | |
| - Eg: Unauthorized access to the onboard diagnostic stack from external interfaces. |
| - <Rationale for result> | ||
|
|
||
| * - 3 | ||
| - Eg: Static configuration files are manipulated by an inside attacker |
Contributor
There was a problem hiding this comment.
Suggested change
| - Eg: Static configuration files are manipulated by an inside attacker | |
| - Eg: Static configuration files are manipulated by an inside attacker. |
NarasipurRohini
changed the title
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.