Hi Jason, Thanks for the update. I was reflecting on the feedback about security as we discussed and I have the impression that the gap to sliver maybe felt as too big a gap to achieve in one release. To address this I would like to propose to add on slide 3 the following text:
"Absolute Minimum expectation: * CII badging passing level * Continuously retaining no critical or high known vulnerabilities > 60 days old * All communication shall be able to be encrypted and have common role-based access control and authorization. Desired expectation is full CII badging silver level, if not 75% towards that. " Then I think the TSC should have a discussion about whether to have this amendment included. Best Regards, Steve. From: [email protected] <[email protected]> On Behalf Of Jason Hunt Sent: Wednesday, June 20, 2018 3:55 PM To: onap-tsc <[email protected]> Subject: [onap-tsc] Platform Maturity/S3P Deck for tomorrow TSC, I incorporated the feedback from today's session into the Casablanca Platform Maturity (S3P) requirements in this presentation: https://wiki.onap.org/download/attachments/29786434/Platform%20Maturity%20S3P%20Casablanca%20Proposal%2021June2018.pdf If I did not capture things appropriately or if there are other items for discussion, please reply to this thread. We would like to vote on these during tomorrow's meeting. Thank you! Regards, Jason Hunt Distinguished Engineer, IBM Phone: 314-749-7422 Email: [email protected]<mailto:[email protected]> Twitter: @DJHunt -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#3184): https://lists.onap.org/g/ONAP-TSC/message/3184 Mute This Topic: https://lists.onap.org/mt/22463412/21656 Group Owner: [email protected] Unsubscribe: https://lists.onap.org/g/ONAP-TSC/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
