Serverless

Back to discussions
Expand all | Collapse all

Meeting Minutes 23rd February+Reminder of tomorrow's WG call!

  • 1.  Meeting Minutes 23rd February+Reminder of tomorrow's WG call!

    Posted Mar 08, 2023 06:12:00 AM

    Dear members,

    This is a kind reminder of tomorrows working group call scheduled to start at 09:00 a.m. PST / 12:00 p.m. EST / 17:00 GMT / 19:00 EET.

    Meeting minutes from our short call on the 23rd of February and action items, follow below:

    • Working group call was quite short because of the small attendance. Both co-chairs missed the call and only 4 volunteers attended.
    • I'd like to thank attendees for helping resolve some of the pending action items during the call.
    Control categories that are still to be completed with pending action items:
    IA - Identification and Authentication 
    SC - System and Communications Protection
    SI - System and Information Integrity
    Previous action items:
    • Robert to please fill in column J for the SI category and review column I for the same. - Partially DONE
    • Karthik and Arvin to fill in the responsibility part in Column J for the SA category. - DONE
    • Vishwas: SC-19 X, please fill in column H. Is justification for why are not relevant to FaaS, enough? - DONE
    • Aradhna to review and vote on the details of the SI: System and Information Integrity control category entered by Eric PeetersSI-5, SI-6, SI-10 (1) to SI-10 (4), SI-11, SI-17. - Partially PENDING
    •  Eric to discuss with Aradhna or the working group on SI-10 (1) to SI-10 (4), SI-11. For SI-4(1) please specify 'Why is it Out of Scope for FaaS'. - PENDING

    Action items for tomorrow:

    • Robert ( @Robert Ficcaglia) to please finish reviewing column I for the SI category
    • Aradhna ( @A Chetal ) to review and vote on the details of the SI: System and Information Integrity control category entered by Eric PeetersSI-6, SI-10 (1) to SI-10 (4), SI-11, SI-17.
    •  Eric ( @Eric Peeters ) to discuss with Aradhna ( @A Chetal ) or the working group on SI-10 (1) to SI-10 (4), SI-11. For SI-4(1) please specify 'Why is it Out of Scope for FaaS.
    • Eric ( @Eric Peeters ) to fill in column J of the Shared Responsibility in the AU category.
    • Vishwas ( @Vishwas Manral ) to fill in column J of the Shared Responsibility in the SC category.
    • Vishwas ( @Vishwas Manral ) to fill in column J of the Shared Responsibility in the CA category.
    • Rajiv ( @Rajiv Gunja ) to fill in the column J of the Shared Responsibility in the RA category.
    • Volunteer needed to fill in column J of the Shared Responsibility in the CM and AT categories.
    • Working group to discuss and decide whether IA-5 (1) is in scope or out of scope since this sub-control is considered Organizational and the policy should be system wide and generic.
    • Needed reviewer for the new entries of the IA: Identification and Authentication controls category that are marked N/A.

    Next working group call:
    Thursday, 9 March, at 09:00 a.m. PST / 12:00 p.m. EST / 17:00 GMT.
    url: https://zoom.us/j/98681420926 (Meeting ID: 986 8142 0926)

    Happy International Women's Day to all the women in this community!!!

    Kind regards,
    Marina



    ------------------------------
    Marina Bregkou,
    Senior Research Analyst,
    CSA
    ------------------------------