Project Proposals/SRT

From fd.io

< Project Proposals

Jump to: navigation, search

Contents

1 Name
2 Project Contact Name and Email
3 Repository Name
4 Description
5 Scope
6 Initial Committers
7 Vendor Neutral
8 Meets Board Policy (including IPR, being within Board defined Scope etc)
9 Administrata
10 External links

Name

Security Response Team

Project Contact Name and Email

Andi Rowley <andi.rowley@c9h.org>

Repository Name

srt

Description

Key security activities performed by the SRT include:

Conduct the risk assessment and use the results to supplement the base line security controls;

Analyze security requirements;

Perform functional and security testing;

Prepare initial documents for system certification and accreditation; and

Design security architecture.

Maintain CPE registrations with the NIST on behalf of all FD.io projects

Monitor National Vulnerability Database for issues which may apply to CPEs registered by FD.io

Scope

The scope of this project includes

Security aspects of SDLC
Development and maintenance of security response SOPs
Development and Management of security policy documents
NIST CPEs

Initial Committers

Name	Email	IRC nick	LFID
C.J. Collier	cjcollier@linuxfoundation.org	cj	cjcollier
Andi Rowley	andi.rowley@c9h.org	human_	arowley

Vendor Neutral

No issue regarding vendor neutrality.

Meets Board Policy (including IPR, being within Board defined Scope etc)

Meets board policy as expressed in Technical Community Charter and IP Policy

Administrata

Request for Project proposal consideration
- Email
- Date: July 25th 2016

External links

Retrieved from "https://wiki.fd.io/index.php?title=Project_Proposals/SRT&oldid=2480"

Project Proposal