CNCF Zero Trust Whitepaper #1229
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
✅ Deploy Preview for tag-security ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
y-tabata
reviewed
Feb 6, 2024
y-tabata
reviewed
Feb 6, 2024
|
Thank you for opening the PR. @mrsabath as you make progress to make this "merge ready" please also address the linter, spellchecks and link checker output in the above CI checks |
9 tasks
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
|
|
||
| #### Data in Transit | ||
|
|
||
| To ensure all communications in-transit are encrypted, all services should be using TLS (at least a version 1.2), and all clients need to verify the certificates presented by the server. CNCF projects offering TLS and certificates to protect inter-service communication include [Istio](https://istio.io/), [Linkerd](https://linkerd.io/), [Dapr](https://dapr.io/), and [Knative](https://knative.dev/). |
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
y-tabata
reviewed
Feb 17, 2024
|
Thank you @y-tabata for your suggestions. The automation I used for converting from Doc to Markdown is not perfect and even though I did a lot of manual updates, there are still bugs that you were able to discover |
y-tabata
reviewed
Mar 24, 2024
y-tabata
reviewed
Mar 24, 2024
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
* Create retool-portal-mfa.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Create xmlsec-manageengine.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update retool-portal-mfa.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Create trojanized-fdm.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update README.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Change login-bell to 1975 Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update README.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update trojanized-fdm.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update retool-portal-mfa.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update xmlsec-manageengine.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update trojanized-fdm.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update trojanized-fdm.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update retool-portal-mfa.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update xmlsec-manageengine.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update login-bell.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update retool-portal-mfa.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update xmlsec-manageengine.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> * Update login-bell.md Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> --------- Signed-off-by: zerb4t <117054988+zerb4t@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
* Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md - Basic Threat Landscape - Secure Development Practices improved with status badges - All-around fixes Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md community security pals credit Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Raghd Hamzeh <raghd@rhamzeh.com> Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md fixed linting errors Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md spell, links and lint Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update lint-config.json Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update spelling-config.json Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> --------- Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> Co-authored-by: Raghd Hamzeh <raghd@rhamzeh.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
* Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md - Basic Threat Landscape - Secure Development Practices improved with status badges - All-around fixes Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md community security pals credit Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Raghd Hamzeh <raghd@rhamzeh.com> Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md fixed linting errors Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md spell, links and lint Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update lint-config.json Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update spelling-config.json Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> * Update self-assessment.md Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> --------- Signed-off-by: Louis <119436047+lj365@users.noreply.github.com> Co-authored-by: Raghd Hamzeh <raghd@rhamzeh.com>
Co-authored-by: Yoshiyuki Tabata <34849594+y-tabata@users.noreply.github.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
mrsabath
force-pushed
the
zero-trust-whitepaper
branch
from
4e48ac2
to
3bc18f8
Compare
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
jcchavezs
reviewed
Apr 2, 2024
Co-authored-by: José Carlos Chávez <jcchavezs@gmail.com> Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Signed-off-by: Mariusz Sabath <mrsabath@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is an attempt to convert the CNCF Zero Trust Whitepaper to Markdown format as requested by the community.
The original document: https://docs.google.com/document/d/10g2390JdCBXmSmzQ_EGHFWrg2JosPsXLaqXaGQ-B9NA/edit?usp=sharing
CNCF issue: #950
This is still a draft. I just started the conversion and it requires more work and cleanup