tag-security
tag-security copied to clipboard
cncf
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Title: Secure Identity and Context in Microservices with Tratteria Speakers: Atul Tulshibagwale/tulshi Description: [Tratteria](https://tratteria.io/) implements a new IETF OAuth WG draft called "[Transaction Tokens](https://datatracker.ietf.org/doc/draft-ietf-oauth-transaction-tokens/)" (TraTs). TraTs are short-lived signed JWTs...
Each TAG is being asked by the CNCF TOC to provide an assessment summary of their domain, due by November 1st, 2024. ### Intent The intent of this assessment is...
This ticket is to report that one of my favoriate bookmarked links (to this repo) is now a 404 * https://github.com/cncf/tag-security/tree/main/supply-chain-security/compromises ## Problem I frequently send the above link to...
Title: Confidential Containers Project Update Speakers: To be confirmed -> likely James Magowan (@magowan), possibly another from Project Steering Committee (https://github.com/confidential-containers/confidential-containers/blob/main/governance.md#members) Description: Provide an update on Confidential Containers Project (https://github.com/confidential-containers)...
Title: Substation Overview (CNCF Sandbox) Speakers: - @jshlbrd Description: This presentation is an overview of [Substation](https://github.com/brexhq/substation) ([submitted to CNCF Sandbox](https://github.com/cncf/sandbox/issues/117)) and will cover its use cases, how it works (cloud...
Project Name: oqsprovider - (Open Quantum Safe provider for OpenSSL3.x ) Github URL: https://github.com/open-quantum-safe/oqs-provider Issue tracker: https://github.com/open-quantum-safe/oqs-provider/issues/451 The oqsprovider project offers standards-track post-quantum key exchange, authentication, and ciphersuites in the...
Description: Create more hands-on labs for the free ["Developing Secure Software" (LFD121) course](https://training.linuxfoundation.org/training/developing-secure-software-lfd121/) Impact: This will significantly help software developers learn how to develop secure software. 53% of software developers...
### Description When navigating to https://tag-security.cncf.io/community/working-groups/ there is currently no landing page for working groups. Suggesting that we create a `community/working-groups/README.md` that describes some information about the intent of a...
**Project Name**: Dragonfly **Github URL**: https://github.com/dragonflyoss/Dragonfly2 **Project Security Lead**: [Wenbo Qi(Gaius)](https://github.com/gaius-qi) CNCF project stage and issue (NA if not applicable): Incubation, [applying for graduation](https://github.com/cncf/toc/issues/1358). Security Provider: no - [x] Identify...
