14:15:08 <aimeeu> #startmeeting Acumos Security Subcommittee Meeting
14:15:08 <collabot> Meeting started Tue Jul 31 14:15:08 2018 UTC.  The chair is aimeeu. Information about MeetBot at http://wiki.debian.org/MeetBot.
14:15:08 <collabot> Useful Commands: #action #agreed #help #info #idea #link #topic.
14:15:08 <collabot> The meeting name has been set to 'acumos_security_subcommittee_meeting'
14:15:15 <aimeeu> #chair bryan_att
14:15:15 <collabot> Current chairs: aimeeu bryan_att
14:15:47 <aimeeu> #topic Roll Call
14:18:52 <aimeeu> #info Bryan Sullivan AT&T, Daniel Sela - Amdocs
14:19:36 <aimeeu> #topic Release Planning
14:19:53 <aimeeu> #info bryan added a roadmap page to the wiki
14:20:23 <aimeeu> #info #link https://wiki.acumos.org/display/SEC/Release+Planning
14:22:04 <aimeeu> #info Bryan adds items from Daniel
14:22:55 <aimeeu> #info "automatic artifact reconstruction upon upload to the platform as necessary to ensure compiled model " matches the source"
14:23:11 <aimeeu> #info Daniel: idea is NOT to let attacker take advantage
14:28:15 <aimeeu> #info discussion on Python pickle and HD5 files
14:36:41 <aimeeu> #info federation secured with client certificates
14:43:02 <aimeeu> #info question on what can be done in Athena release
14:44:49 <aimeeu> #topic Ongoing Items
14:45:03 <aimeeu> #info still no response from LF on using NexusIQ
14:51:14 <aimeeu> #topic security-verification component
15:00:23 <aimeeu> #info Daniel: platform code contribution not a problem; if i want to download 8 models developed by TechM, i have to download, scan, review, approve - quite expensive; download and manually scanning does not solve the security/trust problem
15:00:38 <aimeeu> #info Bryan:  technical limitation for scanning: process-related inside Acumos (no mandate to upload source), metadata.json only lists dependencies needed to build microservice
15:00:58 <aimeeu> #info Daniel asks if code is uploaded during onboarding
15:01:17 <aimeeu> #info Bryan: for python, code technically is uploaded - trained models are uploaded as compressed data (pickle or HD5 - binary compressed representations of code - uncompressed is not full representation of source); no decompression tool for pickle files - you'd have to uncompress in python env which would potentially expose
15:01:50 <aimeeu> #info Daniel would like to know exactly what happens when a model is on-boarded - what transformations take place and when
15:02:01 <aimeeu> #info Bryan will talk to model on-boarding team
15:02:06 <aimeeu> #endmeeting