Date   
Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 05/29/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 29 May 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Linux Security Summit - deadline May 31

Maemalynn Meanor <maemalynn@...>
 

Hi All:

This is a reminder that the deadline to submit speaking proposals for the Linux Security Summit is Friday, May 31. The Linux Security Summit will be in San Diego on August 19-21, which takes place right before Open Source Summit + Embedded Linux Conference North America in the same area. 

Topic areas include but are not limited to:

  • Kernel self-protection
  • Access Control
  • Cryptography and key management
  • Integrity Policy and enforcement
  • Hardware Security
  • IoT and Embedded Security
  • Virtualization and Containers
  • System-specific System Hardening
  • Case Studies
  • Security Tools
  • Security UX
  • Emerging Technologies, Threats & Techniques

Feel free to submit a proposal at https://linuxfoundation.smapply.io/prog/lssna2019/. Or, if you would like our help, please send us your bio and security-focused abstract and we’ll do the rest. 

Thanks,
Mae

Maemalynn Meanor
Senior PR Manager 
The Linux Foundation
Maemalynn@...
(602) 541-0356
Skype: Maemalynn






Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 06/05/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 5 June 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

WG call tomorrow at 10am CDT

White2, James
 

All,

A reminder that the Security WG meets tomorrow at 10am CDT right after the TSC call.  Find the agenda and connection information here:  https://wiki.edgexfoundry.org/display/FA/Security+Working+Group.

 

 

 

Jim White

Director, IoT Platform Development Team & Distinguished Engineer

EdgeX Foundry Technical Steering Committee Vice Chairman

Dell Technologies | IoT Solutions Division

Office +1 512-723-6139, mobile/text +1 612-916-6693

james_white2@...

 

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 06/12/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 12 June 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

WG meeting reminder

White2, James
 

Everyone – our security working group will meet tomorrow at 10am CDT.  Find the agenda and connection details here:  https://wiki.edgexfoundry.org/display/FA/Security+Working+Group

 

Thanks,

 

Jim White

Director, IoT Platform Development Team & Distinguished Engineer

EdgeX Foundry Technical Steering Committee Vice Chairman

Dell Technologies | IoT Solutions Division

Office +1 512-723-6139, mobile/text +1 612-916-6693

james_white2@...

 

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 06/19/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 19 June 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 06/26/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 26 June 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Cancelled Event: EdgeX Security WG Meeting (Weekly) - Wednesday, 3 July 2019 #cal-cancelled

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Cancelled: EdgeX Security WG Meeting (Weekly)

This event has been cancelled.

When:
Wednesday, 3 July 2019
8:00am to 9:00am
(UTC-07:00) America/Los Angeles

Where:
https://zoom.us/j/576218946

Organizer:
EdgeX-TSC-Security@...

Description:
EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 07/10/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 10 July 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 07/17/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 17 July 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 07/24/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 24 July 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX: Hardware Security F2F Meeting - Thu, 08/01/2019 9:00am-2:30pm, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX: Hardware Security F2F Meeting

When: Thursday, 1 August 2019, 9:00am to 2:30pm, (GMT-07:00) America/Los Angeles

An RSVP is requested. Click here to RSVP

Description: Hardware Security F2F Meeting
Visit the Hardware Security F2F event wiki page for updates and detailed agenda. Zoom Link.
Please email  EdgeX-TSC-Security@... for any questions.

Cancelled Event: EdgeX Security WG Meeting (Weekly) - Wednesday, 31 July 2019 #cal-cancelled

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Cancelled: EdgeX Security WG Meeting (Weekly)

This event has been cancelled.

When:
Wednesday, 31 July 2019
8:00am to 9:00am
(UTC-07:00) America/Los Angeles

Where:
https://zoom.us/j/576218946

Organizer:
EdgeX-TSC-Security@...

Description:
EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Upcoming Event: EdgeX: Hardware Security F2F Meeting - Thu, 08/01/2019 9:00am-2:30pm, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX: Hardware Security F2F Meeting

When: Thursday, 1 August 2019, 9:00am to 2:30pm, (GMT-07:00) America/Los Angeles

An RSVP is requested. Click here to RSVP

Description: Hardware Security F2F Meeting
Visit the Hardware Security F2F event wiki page for updates and detailed agenda. Zoom Link.
Please email  EdgeX-TSC-Security@... for any questions.

Upcoming Event: EdgeX Security WG Meeting (Weekly) - Wed, 08/07/2019 8:00am-9:00am, Please RSVP #cal-reminder

EdgeX-TSC-Security@lists.edgexfoundry.org Calendar <EdgeX-TSC-Security@...>
 

Reminder: EdgeX Security WG Meeting (Weekly)

When: Wednesday, 7 August 2019, 8:00am to 9:00am, (GMT-07:00) America/Los Angeles

Where:https://zoom.us/j/576218946

An RSVP is requested. Click here to RSVP

Organizer: EdgeX-TSC-Security@...

Description: EdgeX Security WG Meeting. Meeting content posted to Security WG Wiki.
Meeting Lead: David Ferriera, Security WG Chair, david.ferriera@...
-----
Join from PC, Mac, Linux, iOS or Android: https://zoom.us/j/576218946

Or iPhone one-tap (US Toll): +14086380968,,576218946# or +16465588656,,576218946#

Or Telephone:
    Dial: +1 408 638 0968 (US Toll) or +1 646 558 8656 (US Toll)
    +1 855 880 1246 (US Toll Free)
    +1 877 369 0926 (US Toll Free)
    Meeting ID: 576 218 946
    International numbers available: https://zoom.us/zoomconference?m=t6UX5OTIE0SFrIk-9MMnBPbFjE3dZ_xx

Security Enablement

Trevor.Conn@...
 

Hi all -- I posted a follow up to last week's Core WG discussion in the #core Slack channel w/r/t security enablement. It didn't get much traction so I'm reposting it here in order to hopefully facilitate some discussion prior to this week's Security/Core WG calls.


Per the discussion in the Core WG call this morning regarding what is controlled under semantic versioning -- We have the question of security enablement. We would like for security to be enabled by default in Fuji. The user will have to opt out of security as of the Fuji release and we need to provide them a mechanism to do that. I'm thinking an environment variable is the best way to do that and not a command line flag. We can't use a command line flag to turn security off because in Edinburgh it's already effectively off and we'll be changing the default in Fuji -- which isn't backward compatible. I propose we add an environment var like EDGEX_SECURITY=ON that all of the containers / Snap would be aware of. If the var isn't present, then security is disabled, which seems to me like a backward compatible solution. This can be set in the relevant docker-compose file targeting security enablement and I'm sure it's trivial in the Snap. Thoughts?


Trevor Conn
Technical Staff Engineer
Core Working Group Chair of EdgeX Foundry
Dell Technologies | IoT DellTech
Trevor_Conn@...
Round Rock, TX  USA    

Re: Security Enablement

Beau Frusetta
 

I like the use of an environment variable – especially given consideration for backwards compatibility and different methods of distributing/running EdgeX (native, containers, snaps, future…)

 

Beau Frusetta

IOTG/RBHE, Software Engineering Manager

 

"Beware the quiet man. For while others speak, he watches. And while others act, he plans. And when they finally rest...he strikes." - Anonymous

 

From: EdgeX-TSC-Core@... [mailto:EdgeX-TSC-Core@...] On Behalf Of Trevor.Conn@...
Sent: Monday, August 12, 2019 09:21
To: edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: [Edgex-tsc-core] Security Enablement

 

Hi all -- I posted a follow up to last week's Core WG discussion in the #core Slack channel w/r/t security enablement. It didn't get much traction so I'm reposting it here in order to hopefully facilitate some discussion prior to this week's Security/Core WG calls.

 

Per the discussion in the Core WG call this morning regarding what is controlled under semantic versioning -- We have the question of security enablement. We would like for security to be enabled by default in Fuji. The user will have to opt out of security as of the Fuji release and we need to provide them a mechanism to do that. I'm thinking an environment variable is the best way to do that and not a command line flag. We can't use a command line flag to turn security off because in Edinburgh it's already effectively off and we'll be changing the default in Fuji -- which isn't backward compatible. I propose we add an environment var like EDGEX_SECURITY=ON that all of the containers / Snap would be aware of. If the var isn't present, then security is disabled, which seems to me like a backward compatible solution. This can be set in the relevant docker-compose file targeting security enablement and I'm sure it's trivial in the Snap. Thoughts?

 

Trevor Conn
Technical Staff Engineer

Core Working Group Chair of EdgeX Foundry

Dell Technologies | IoT DellTech
Trevor_Conn@...
Round Rock, TX  USA
    

Re: [Edgex-tsc-core] Security Enablement

Jim Wang Intel
 

+1 for using environment variable. -Jim

 

From: EdgeX-TSC-Core@... [mailto:EdgeX-TSC-Core@...] On Behalf Of Beau Frusetta
Sent: Monday, August 12, 2019 9:43 AM
To: Trevor.Conn@...; edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: Re: [Edgex-tsc-core] Security Enablement

 

I like the use of an environment variable – especially given consideration for backwards compatibility and different methods of distributing/running EdgeX (native, containers, snaps, future…)

 

Beau Frusetta

IOTG/RBHE, Software Engineering Manager

 

"Beware the quiet man. For while others speak, he watches. And while others act, he plans. And when they finally rest...he strikes." - Anonymous

 

From: EdgeX-TSC-Core@... [mailto:EdgeX-TSC-Core@...] On Behalf Of Trevor.Conn@...
Sent: Monday, August 12, 2019 09:21
To: edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: [Edgex-tsc-core] Security Enablement

 

Hi all -- I posted a follow up to last week's Core WG discussion in the #core Slack channel w/r/t security enablement. It didn't get much traction so I'm reposting it here in order to hopefully facilitate some discussion prior to this week's Security/Core WG calls.

 

Per the discussion in the Core WG call this morning regarding what is controlled under semantic versioning -- We have the question of security enablement. We would like for security to be enabled by default in Fuji. The user will have to opt out of security as of the Fuji release and we need to provide them a mechanism to do that. I'm thinking an environment variable is the best way to do that and not a command line flag. We can't use a command line flag to turn security off because in Edinburgh it's already effectively off and we'll be changing the default in Fuji -- which isn't backward compatible. I propose we add an environment var like EDGEX_SECURITY=ON that all of the containers / Snap would be aware of. If the var isn't present, then security is disabled, which seems to me like a backward compatible solution. This can be set in the relevant docker-compose file targeting security enablement and I'm sure it's trivial in the Snap. Thoughts?

 

Trevor Conn
Technical Staff Engineer

Core Working Group Chair of EdgeX Foundry

Dell Technologies | IoT DellTech
Trevor_Conn@...
Round Rock, TX  USA
    


--
Best Regards,
  Jim Wang
  Retail Solutions Division / IOTG
  Intel Corporation

Re: [Edgex-tsc-core] Security Enablement

Goodell, Leonard
 

+1 for environment variable

 

From: EdgeX-TSC-Security@... <EdgeX-TSC-Security@...> On Behalf Of Jim Wang Intel
Sent: Monday, August 12, 2019 10:13 AM
To: Frusetta, Beau <beau.frusetta@...>; Trevor.Conn@...; edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: Re: [Edgex-tsc-security] [Edgex-tsc-core] Security Enablement

 

+1 for using environment variable. -Jim

 

From: EdgeX-TSC-Core@... [mailto:EdgeX-TSC-Core@...] On Behalf Of Beau Frusetta
Sent: Monday, August 12, 2019 9:43 AM
To: Trevor.Conn@...; edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: Re: [Edgex-tsc-core] Security Enablement

 

I like the use of an environment variable – especially given consideration for backwards compatibility and different methods of distributing/running EdgeX (native, containers, snaps, future…)

 

Beau Frusetta

IOTG/RBHE, Software Engineering Manager

 

"Beware the quiet man. For while others speak, he watches. And while others act, he plans. And when they finally rest...he strikes." - Anonymous

 

From: EdgeX-TSC-Core@... [mailto:EdgeX-TSC-Core@...] On Behalf Of Trevor.Conn@...
Sent: Monday, August 12, 2019 09:21
To: edgex-tsc-core@...; EdgeX-TSC-Security@...
Subject: [Edgex-tsc-core] Security Enablement

 

Hi all -- I posted a follow up to last week's Core WG discussion in the #core Slack channel w/r/t security enablement. It didn't get much traction so I'm reposting it here in order to hopefully facilitate some discussion prior to this week's Security/Core WG calls.

 

Per the discussion in the Core WG call this morning regarding what is controlled under semantic versioning -- We have the question of security enablement. We would like for security to be enabled by default in Fuji. The user will have to opt out of security as of the Fuji release and we need to provide them a mechanism to do that. I'm thinking an environment variable is the best way to do that and not a command line flag. We can't use a command line flag to turn security off because in Edinburgh it's already effectively off and we'll be changing the default in Fuji -- which isn't backward compatible. I propose we add an environment var like EDGEX_SECURITY=ON that all of the containers / Snap would be aware of. If the var isn't present, then security is disabled, which seems to me like a backward compatible solution. This can be set in the relevant docker-compose file targeting security enablement and I'm sure it's trivial in the Snap. Thoughts?

 

Trevor Conn
Technical Staff Engineer

Core Working Group Chair of EdgeX Foundry

Dell Technologies | IoT DellTech
Trevor_Conn@...
Round Rock, TX  USA
    


--
Best Regards,
  Jim Wang
  Retail Solutions Division / IOTG
  Intel Corporation