misc: Add security policy#8384
Open
DemiMarie wants to merge 1 commit into
Open
Conversation
Member
From my understanding, the previous PR started out around a security policy and later shifted toward a threat model policy. That PR was eventually closed with several discussions still unresolved, and this new PR now continues the topic in a fresh place. It would be really helpful to briefly summarize the main takeaways from the previous discussion (from your POV), how you plan to approach this PR, and what you see as the path forward. In particular, it would be useful to understand why the previous PR stopped making progress at some point, and what is different in this iteration that should help move the discussion toward a conclusion Would be very helpful and highly appreciated :) |
This adds a threat model and security policy. It is loosely based on the Xen Project Security Policy, but with many changes to fit Cloud Hypervisor better. The threat model is comprehensive and includes: - Which entities are fully trusted. - What untrusted entities are and are not allowed to do. - What Cloud Hypervisor expects from its deployment environment. - What trusted entities can safely do on behalf of untrusted entities. Signed-off-by: Demi Marie Obenour <demiobenour@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This adds a threat model and security policy based on the Xen Project Security Policy.
This is a continuation of #7875.