jonmuk
commented
5 years ago Work is underway to review the attack trees ahead of release. This includes informal discussions with the security SIG
Open jonmuk opened 5 years ago
jonmuk
commented
5 years ago Work is underway to review the attack trees ahead of release. This includes informal discussions with the security SIG
jonmuk
commented
5 years ago Work now merged under: https://github.com/cncf/financial-user-group/tree/master/projects/k8s-threat-model
More work to do here as the work is codified and tested...
A detailed threat model has been created, taking in scenarios from both internal actors and container compromise. This solution provides a detailed set of attack trees and documentation with accompanying test cases.