CNCF Special Interest Group for Security (SIG-Security)

Quick links

• Meeting Information
• Slack Information
• New Members
• Members

Objective

SIG-Security facilitates collaboration to discover and produce resources which enable secure access, policy control and safety for operators, administrators, developers, and end-users across the cloud native ecosystem.

Background

“Cloud Native” is open source cloud computing for applications — a complete trusted toolkit for modern architectures (CNCF presentation). There are multiple projects which address key parts of the problem of providing access controls and addressing safety concerns. Each of these adds value, yet for these technical solutions to be capable of working well together and manageable to operate they will need a minimal shared context of what defines a secure system architecture.

Vision

There is a future where operators, administrators and developers feel confident creating new cloud native applications. They use cloud technologies with clear understanding of risks and the ability to validate that their security policy decisions are reflected in deployed software.

We envision that there could exist an ecosystem of tools that can simplify the experience of cloud native operators, administrators and developers, including:

1. System security architecture that understands and accommodates the ever growing heterogeneity of systems and provides a framework to protect resources and data while servicing their users
2. Common vocabulary and open source libraries that make it easy for developers to create and deploy apps that meet system security requirements
3. Common libraries and protocols that enable people to reason about the security of the system, such as auditing and explainability features.

Governance

SIG-Security charter outlines the scope of our group activities, as part of our governance process which details how we work.

Communications

Anyone is welcome to join our open discussions of SIG-Security projects and share news related to the group's mission and charter. Much of the work of the group happens outside of SIG-Security meetings and we encourage project teams to share progress updates or post questions in these channels:

• Email list
• CNCF Slack #sig-security channel

Meeting times

The Security SIG group meets every Wednesday at 10:00am PT (USA Pacific, see your timezone here):

• Meeting minutes and agenda
• Meeting Link: zoom.us/my/cncfsigsecurity

One tap mobile:

• +16465588656,,7375677271# US (New York)
• +16699006833,,7375677271# US (San Jose)

Dial by your location:

• +1 646 558 8656 US (New York)
• +1 669 900 6833 US (San Jose)
• 877 369 0926 US Toll-free
• 855 880 1246 US Toll-free Meeting ID: 737 567 7271 Find your local number: https://zoom.us/u/alwlmxlNn

In person meetings

Please let us know if you are going and if you are interested in attending (or helping to organize!) an in-person meetup. Create a github issue for an event and add to list below:

• KubeCon + CloudNativeCon, San Diego, CA - Nov 18 – 21, 2019 - [issue#128]

Past events

New members

If you are new to the group, check out our New Members Page and submit a PR to add yourself to the members list.

Related groups

• Kubernetes Policy Working Group
• Kubernetes SIG-Auth
• NIST Big Data WG

History

• SAFE WG - renamed to CNCF Security SIG
• (Proposed) CNCF Policy Working Group - Merged into SAFE WG

Members

SIG Chairs

• Dan Shaw (@dshaw), PayPal [Chair - term: 6/3/2019 - 6/3/2020]
• Sarah Allen (@ultrasaurus), [Chair - term: 6/3/2019 - 6/3/2021]
• Jeyappragash JJ (@pragashj), Tetrate.io [Chair - term: 6/3/2019 - 6/3/2021]

SIG Members

Membership governance can be viewed here. If you are new, check out the New Members Page.

Additional information

Past events and meetings

For more details on past events and meetings, please see our past events page