CNCF Zero Trust Whitepaper #1229
Conversation
✅ Deploy Preview for tag-security ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
|
Thank you for opening the PR. @mrsabath as you make progress to make this "merge ready" please also address the linter, spellchecks and link checker output in the above CI checks |
|
|
||
| #### Data in Transit | ||
|
|
||
| To ensure all communications in-transit are encrypted, all services should be using TLS (at least a version 1.2), and all clients need to verify the certificates presented by the server. CNCF projects offering TLS and certificates to protect inter-service communication include [Istio](https://istio.io/), [Linkerd](https://linkerd.io/), [Dapr](https://dapr.io/), and [Knative](https://knative.dev/). |
|
Thank you @y-tabata for your suggestions. The automation I used for converting from Doc to Markdown is not perfect and even though I did a lot of manual updates, there are still bugs that you were able to discover |
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
* Update self-assessment.md Signed-off-by: Louis <[email protected]> * Update self-assessment.md - Basic Threat Landscape - Secure Development Practices improved with status badges - All-around fixes Signed-off-by: Louis <[email protected]> * Update self-assessment.md community security pals credit Signed-off-by: Louis <[email protected]> * Update self-assessment.md Signed-off-by: Louis <[email protected]> * Apply suggestions from code review Co-authored-by: Raghd Hamzeh <[email protected]> Signed-off-by: Louis <[email protected]> * Update self-assessment.md Signed-off-by: Louis <[email protected]> * Update self-assessment.md Signed-off-by: Louis <[email protected]> * Update self-assessment.md fixed linting errors Signed-off-by: Louis <[email protected]> * Update self-assessment.md spell, links and lint Signed-off-by: Louis <[email protected]> * Update lint-config.json Signed-off-by: Louis <[email protected]> * Update spelling-config.json Signed-off-by: Louis <[email protected]> * Update self-assessment.md Signed-off-by: Louis <[email protected]> --------- Signed-off-by: Louis <[email protected]> Co-authored-by: Raghd Hamzeh <[email protected]>
Co-authored-by: Yoshiyuki Tabata <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
mrsabath
force-pushed
the
zero-trust-whitepaper
branch
from
4e48ac2
to
3bc18f8
Compare
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Co-authored-by: José Carlos Chávez <[email protected]> Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
Signed-off-by: Mariusz Sabath <[email protected]>
There was a problem hiding this comment.
Is this still a draft? This PR seems to contain work in progress. As per our established practices, we refrain from merging draft or incomplete work into the repository to avoid introducing outdated or inconsistent content. The existing markdown files you'll find represent the most recent, stable versions of their respective publications. So the work, whether in Markdown or PDF format, should be merged only after thorough review and completion.
During our chairs and tech leads discussion this morning, we acknowledged the need for comprehensive publishing guidelines to clarify the process and minimize confusion going forward. These guidelines will be documented and disseminated accordingly.
I appreciate the progress made so far on this effort. Given its current state, I recommend dedicating focused attention over the next two weeks to bring it to completion. Once finalized, we can proceed with merging the updates. To facilitate this, I will provide more detailed feedback on the tracking issue.
Signed-off-by: Mariusz Sabath <[email protected]>
This work has been completed. We went through several stages and reviews. Several version of PDF were create. The latest one seems to be the most completed.
I am in full agreement, and I would love to contribute to these guidelines, and provide my own suggestions and observations, as the process was long and challenging
Thank you for your feedback @anvega , let's close on the loose ends if any. |
|
I'm stepping in to help push this across the finish line, with the goal of completing all edits by Friday, June 21. Community and TAG feedback is now being applied in a concerted push from myself and the lead authors. No additional feedback will be accepted via this pull request. |
|
Closing due to #1395 replacing this. |
This is an attempt to convert the CNCF Zero Trust Whitepaper to Markdown format as requested by the community.
The original document: https://docs.google.com/document/d/10g2390JdCBXmSmzQ_EGHFWrg2JosPsXLaqXaGQ-B9NA/edit?usp=sharing
CNCF issue: #950
This is still a draft. I just started the conversion and it requires more work and cleanup