Serverless

Back to discussions
Expand all | Collapse all

Meeting Minutes 7th October 2022

  • 1.  Meeting Minutes 7th October 2022

    Posted Oct 18, 2022 08:33:00 AM
    Dear members,

    Here are the minutes form the Serverless working group call on the 7th of October.


    Regarding the on-going work on the 'NIST 800-53 controls Implementation to FaaS' document:

    • The group decided that even if a control is not applicable to FaaS, it should describe in the 'Implementation Details' column why it is not applicable.

    Previous action items:
    • Joseph to review AC-5, AC-6 (1), (5), (9), and AC-14 from the Access Control category. - DONE
    • Aradhna ( @Aradhna Chetal) to review and vote on the details of the SI: System and Information Integrity control category entered by Eric Peeters - PENDING
    • Vrettos ( @Vrettos Moulos) to work on column I of the CA: Assessment, Authorization, and Monitoring control category. - DONE
    • Reviewer needed for the AT: Awareness and Training control category. -DONE
    • Vishwas to review and vote on column G of the CA: CA: Assessment, Authorization, and Monitoring control category filled in by Vrettos. - DONE
    • Vishwas ( @Vishwas Manral) to help Christopher on SC-12, SC-13X and SC-17 implementation. - PENDING
    • Vrettos ( @Vrettos Moulos) to review column H of the CA: CA: Assessment, Authorization, and Monitoring control category filled in by Vishwas. - DONE
    • Vani to fill in column I for the IA-1 sub-control in row 89. - DONE
    • Crystal, or Rajiv ( @Rajiv Gunja) or Wayne ( @Wayne Anderson) to fill in columns G, H, I for sub-control RA-01, row 106. - PENDING
    • Rajiv ( @Rajiv Gunja) to review and vote on CM-13 and CM 14, after Joseph's latest update. - PENDING
    New action items:
    • Wayne ( @Wayne Anderson) to fill in columns G, H, I for sub-control RA-01, row 106.
    • Rajiv ( @Rajiv Gunja) to vote on CM-7 and CM-8, in lines 81-82.
    • Rajiv ( @Rajiv Gunja) to review and vote on CM-13 and CM 14, after Joseph's latest update.
    • Christopher ( @Christopher Wall) to update AC-16, column G with the tags comment. Line 19.
    • Christopher ( @Christopher Wall) to review and vote on remaining sub-controls of the SC category.
    • Vishwas ( @Vishwas Manral) to help Christopher on SC-12, SC-13X and SC-17 implementation.
    • Vishwas ( @Vishwas Manral) to review and vote the CM category. Lines 75-88.
    • Aradhna @Aradhna Chetal) to review and vote on the details of the SI: System and Information Integrity control category entered by Eric Peeters.
    • Brynna ( @Brynna Nery) to update sub-control AC-10, line 15 and turn it form N/A to FaaS relevant.
    • Brynna ( @Brynna Nery) to update column G, for all N/A sub-controls in the AC category.
    • Joseph ( @Joseph Arcelo) to vote on remaining sub-control from the AC category. Lines 13-17 and 20-27.
    • Karthik ( @Karthik Kaligotla) and Arvin ( @Arvin Reddy Jakkamreddy) to complete column E for the SA category.
    • Eric ( @Eric Peeters) to review the AT category and vote.
    • Robert ( @Robert Ficcaglia) to review and vote on SA category. Lines 119-134.
    • Vrettos ( @Vrettos Moulos) to fill in the missing entries for the RA category. Lines 106 - 118.
    Next working group call: Friday, 21st October, at 09:00 a.m. PST / 12:00 p.m. EST / 17:00 GMT / 18:00 CET.
    url: https://zoom.us/j/98681420926  (Meeting ID: 986 8142 0926)

    Kind regards,
    Marina

    ​​​​​​​​​​​​​​​​​

    ------------------------------
    Marina Bregkou,
    Senior Research Analyst,
    CSA
    ------------------------------