14:07:36 <LukeHinds> #startmeeting Security Group 18-11
14:07:36 <collabot`> Meeting started Wed Nov 18 14:07:36 2015 UTC.  The chair is LukeHinds. Information about MeetBot at http://wiki.debian.org/MeetBot.
14:07:36 <collabot`> Useful Commands: #action #agreed #help #info #idea #link #topic.
14:07:36 <collabot`> The meeting name has been set to 'security_group_18_11'
14:07:57 <LukeHinds> ok, so we have a new git / gerrit set up for the security guide
14:08:10 <LukeHinds> suggest you * have a go at getting set up
14:08:23 <LukeHinds> don't worry about messing anything up, now is the time to learn
14:08:23 <aripie> will do that
14:08:36 <LukeHinds> so one topic is the guide
14:08:41 <LukeHinds> anyone have anything else?
14:09:25 <aripie> any info from the summit?
14:11:22 <sona> Is there any deadline for this guide?
14:11:34 <LukeHinds> we should try for the next release
14:11:38 <LukeHinds> but we are not tied to it yet
14:11:42 <LukeHinds> lets see how we get on.
14:12:02 <sona> I have been looking a little at Networking/Neutron Security
14:12:20 <LukeHinds> keep going Sona, I need to collect my kid, but will drop back in!
14:13:53 <aripie> can you summarize what you found, Sona?
14:14:03 <sona> ok, Please go and take care of your kid :)
14:14:26 <sona> I have been looking here: http://docs.openstack.org/developer/neutron/devref/security_group_api.html
14:14:38 <sona> & http://docs.rackspace.com/rpc/api/v10/bk-rpc-guide/content/networking-security.html
14:16:31 <sona> & http://docs.openstack.org/security-guide/networking/services-security-best-practices.html
14:17:08 <aripie> ok
14:17:23 <sona> we could probably link some of these pages from our guide
14:19:24 <aripie> yes, I suppose network security heading is the place for these
14:25:36 <sona> I could dig into  security for virtualization/hypervisor
14:26:48 <sona> containers for instance
14:27:54 <aripie> in CSA virtualization wg there is a document for review
14:28:21 <aripie> #link https://cloudsecurityalliance.org/document/network-functions-virtualization-position-paper/
14:28:42 <sona> ok, I will check this
14:29:17 <sona> It seems that some people believe containers have better performance but security is downside
14:29:18 <sona> http://www.itworld.com/article/2920349/security/for-containers-security-is-problem-1.html
14:29:46 <aripie> container security is much debated, I have not found any authoritative statements so it is an interesting area
14:32:42 <sona> if there is any interest in containers security, I can dig into that area more otherwise I will just keep to Network security :)
14:33:44 <aripie> feel free to dig in!
14:34:02 <aripie> I am more looking into auditing and security logging
14:34:12 <aripie> for the time being at least
14:34:25 <sona> ok :)
14:35:07 <aripie> we can flesh out the ToC of the security guide with headings and subheadings
14:37:00 <aripie> for security management we may get some content and references from Moon project
14:39:24 <sona> Ari, What "security management" are you referring to?
14:41:12 <aripie> managing security capabilities of NFVI
14:41:17 <aripie> as in
14:41:21 <aripie> #link https://wiki.opnfv.org/moon
14:42:51 <sona> i see
14:51:26 <sona> I guess we don't have much to discuss
14:52:45 <aripie> let's continue with the security guide at own pace and check where we are next week
15:05:13 <aripie> I have to leave now
15:05:14 <aripie> bye
16:03:35 <LukeHinds> hi all - thanks for holding fort, will read over history
16:03:40 <LukeHinds> #endmeeting