tag-security icon indicating copy to clipboard operation
tag-security copied to clipboard

Published 20 hours ago verified publisher icon cncf

Mini/Micro blogs to discuss the various aspects of the Cloud Native Security Whitepaper

Open vinayvenkat opened this issue 4 years ago • 9 comments

Description: I propose that we write a sequence of mini blogs that delve deeper into the various sections of the Cloud Native Security Whitepaper

Impact: The obejctive of the blogs will be to dive a deeper into the various sections of the Cloud Native Security Whitepaper. Additionally, provide best practices and guidance for the audience to takeaway in terms of the manner in which security needs to applied at various points in the applications stack as well as the application lifecycle for each dimension as it pertains to security for cloud native applications.

Scope: TBD TO DO

  • [ ] SIG Representative
  • [ ] Project leader(s)
  • [ ] TBD

vinayvenkat avatar Nov 11 '20 18:11 vinayvenkat

I can help with the blog posts.

magnologan avatar Nov 13 '20 12:11 magnologan

I am interested in writing the blogs.

aks-alokraj avatar Dec 09 '20 05:12 aks-alokraj

@vinayvenkat do you think you could help devise an outline/plan on how we could approach this? If we could start defining a rough scope, it would be facilitate members to find areas to contribute.

lumjjb avatar Dec 14 '20 16:12 lumjjb

@vinayvenkat came across one of the articles from you about the whitepaper: https://thenewstack.io/how-to-implement-security-recommendations-from-the-cloud-native-computing-foundation/ Just curious on whether, it is a deliverable of this effort or a separate one ?

PushkarJ avatar Jan 31 '21 20:01 PushkarJ

@vinayvenkat came across one of the articles from you about the whitepaper: https://thenewstack.io/how-to-implement-security-recommendations-from-the-cloud-native-computing-foundation/ Just curious on whether, it is a deliverable of this effort or a separate one ?

@PushkarJ This was a separate effort to amplify the reach of the Cloud Native Security Whitepaper

vinayvenkat avatar Feb 11 '21 22:02 vinayvenkat

This issue has been automatically marked as inactive because it has not had recent activity.

stale[bot] avatar Apr 14 '21 22:04 stale[bot]

This issue has been automatically marked as inactive because it has not had recent activity.

stale[bot] avatar Sep 06 '21 18:09 stale[bot]

Looking at this for v2 whitepaper and v1 retrospective, I think one thing that is clear is that we did not create enough awareness about the whitepaper (40% found out about the whitepaper because of the survey). Having said that, I am not sure if creating a blog series would get us more eyeballs for the effort we would put in. So propose to close this issue in favor of #747 . For completeness, we should continue to do the following things for v2:

  • Author CNCF and Kubernetes Blog posts (31% found about whitepaper through them)
  • Share the whitepaper through social media, CNCF End user groups and mail subscriptions for members and on https://lists.cncf.io/g/cncf-tag-security (31% found about the whitepaper through them)

Related survey data: https://github.com/cncf/surveys/blob/master/security/q9.png

PushkarJ avatar Sep 07 '21 17:09 PushkarJ

This issue has been automatically marked as inactive because it has not had recent activity.

stale[bot] avatar Nov 07 '21 16:11 stale[bot]

We've opted for https://www.cncf.io/blog/ as our avenue to publishing. If you are working on content that you'd like to see featured, just let the rest of us know either in the slack channel or during an upcoming regular call. We'll help you get it published.

anvega avatar Jun 20 '23 01:06 anvega