Hi Jonathan,
Appreciate your explanation. Glad to know Python CADI has been
touched , hope it will be available sometime.
But integration with CADI requires effort and knowledge to
understand the whole workflow, and debug/maintain effort as well. It will be
great
Hi Srini,
I believe for multicloud the access rules based on URI/HTTP
header values are pretty enough. If ISTIO CA and RBAC could help that would be
great relief.
Thanks for the comment.
Best Regards,
Bin Yang,Solution Readiness Team,Wind River
Direct +86,10,84777126
FYI, when I say “AAF is entirely RESTful”, I mean that calling AAF is RESTful.
This means that any language that can do HTTP/S and TEXT can talk to AAF
legitimately, including, I’ve seen MainFrames.
Just because AAF itself is RESTful does not mean that applications using AAF
must be RESTful.
Greetings, Bin,
Secure calls using Python is different depending on the Environment.
However, remember that for Casablanca, we are still on the hook for “HEAT” as
well as OOM (where “OOM” is Kubernetes).
If in Kubernetes, there is an effort underway to create a Security
Microservice, and
Hi,
as this topic was discussed also in Risk Assessment sessions in Beijing F2F
event, adding here some aspects (disclaimer, my summary text below has not been
reviewed):
Authentication and authorization (AA) solution: non-REST APIs, and components
written in other language than Java are not
Hi Bin,
As Ramki mentioned in the wiki page, ISTIO CA and ISTIO RBAC may be good enough
for Multi-Cloud. But to be sure, it is good to know from Multi-Cloud team on
what kind of APIs are present and what kind of restrictions the team thinks it
should provide to various consumers of
Hi Bin,
I am looping in the onap-seccom distribution list as well.
@Jonathan, what guidance would you provide for Bin regarding use CAD with
python?
Best Regards,
Steve.
From: Yang, Bin
Sent: Wednesday, June 27, 2018 5:57 AM
To: Stephen Terrill ; onap-tsc
Cc: onap-disc...@lists.onap.org
Dear TSC and Security Subcommittee,
As part of S3P requirement, the CII Silver badge requires:
*Level 2: CII Silver badge, plus:
-All internal/external system communications shall be able to be
encrypted.
-All internal/external service calls shall have common role-based
