Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document secure deployment #13082

Closed
lucasgonze opened this issue Jun 24, 2022 · 6 comments
Closed

Document secure deployment #13082

lucasgonze opened this issue Jun 24, 2022 · 6 comments
Assignees
@lucasgonze @aswin-alexander

Comments

@lucasgonze
Copy link
Contributor

lucasgonze commented Jun 24, 2022
edited

Secure Deployment Documentation

Problem

Secure software is secure by default. At deployment time there are a number of configuration choices that influence risk. Deployers lack guidance in what these are.

Solution

There should be documentation for deployers on steps they should take to ensure security.

For example, deployers should ensure that there is a verified boot and the AGW is locked down, and it is wise to have a managed OS.

Security guidance should appear where it is relevant and useful. There can be a centralized document, but the same tips may be available in context relevant to particular features.

Non-goals

It is out of scope to change the underlying software.
@lucasgonze lucasgonze added the type: proposal Proposals and design documents label Jun 24, 2022
@lucasgonze lucasgonze self-assigned this Jun 24, 2022
@lucasgonze
Copy link
Contributor Author

Prior art on the Confluence:

@lucasgonze
Copy link
Contributor Author

Topic brainstorming:

  • physical security
  • TPU/ TZ/ TEE
  • ACLs/ account role restrictions
  • (potentially SOX compliance)
  • periodic access review
  • signed builds
  • Pen test
  • review of security bulletins / deployment of patches (esp packages included)

@lucasgonze
Copy link
Contributor Author

lucasgonze commented Jul 7, 2022
edited

Docusaurus on deployment and configuration (https://docs.magmacore.org/docs/lte/configure_agw_ha) could be used to create a checklist.

Logging is relevant to deployment security. https://docs.magmacore.org/docs/orc8r/debug_logs

@ShubhamTatvamasi
Copy link
Contributor

When I was testing a deployment of Orc8r on AWS, I discovered few sets of ports that we have to open in security group for the deployment. Maybe we can use this info in our security docs.
https://github.com/ShubhamTatvamasi/magma-galaxy/blob/master/docs/aws.md

@lucasgonze lucasgonze removed the type: proposal Proposals and design documents label Jul 15, 2022
@lucasgonze
Copy link
Contributor Author

Two important developments in the life of this ticket:

  1. Got support in TSC meeting to add this project to the roadmap. The "proposal" phase of work is over.
  2. Future work should use the confidential ticket in the security repo because there will likely be secrets found along the way

If/when I come back to this ticket it will be to declare victory.

@lucasgonze
Copy link
Contributor Author

Work on this task is now in https://github.com/magma/security/issues/104.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lucasgonze lucasgonze

@aswin-alexander aswin-alexander

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lucasgonze @ShubhamTatvamasi @aswin-alexander