Skip to content
This repository has been archived by the owner on Nov 10, 2022. It is now read-only.

Document standard threat models that Enarx addresses (RFC) #15

Open
MikeCamel opened this issue Feb 12, 2020 · 1 comment
Open

Document standard threat models that Enarx addresses (RFC) #15

MikeCamel opened this issue Feb 12, 2020 · 1 comment
Labels
documentation Improvements or additions to documentation enhancement New feature or request

Comments

@MikeCamel
Copy link
Contributor

Description
We don't have a well-documented set of threat models. These are important to make explicit, for:
a) designers and developers of Enarx;
b) users of Enarx;
c) auditors of Enarx;
d) auditors of deployments using Enarx.

Where available, we should link to threat models for component/dependent parts, such as SGX, as (following the "weakest link" model), Enarx cannot expect to address threat models for which component/dependent parts do not cover.
@MikeCamel
Copy link
Contributor Author

See also enarx/enarx#221.

@axelsimon axelsimon transferred this issue from enarx/enarx Feb 13, 2020
@axelsimon axelsimon added documentation Improvements or additions to documentation enhancement New feature or request labels Feb 13, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MikeCamel @axelsimon