diff options
| author |   adheli.tavares <adheli.tavares@est.tech> | 2024-11-28 09:56:08 +0000 |
|---|---|---|
| committer | adheli.tavares <adheli.tavares@est.tech> | 2024-11-28 10:14:33 +0000 |
| commit | 2266df7f0f7d7d8a5e85ba2fae4fc5deef1a0276 (patch) | |
| tree | a094e39b7e31c979a31af75e52bc8e1ffe855cdc /docs/architecture/architecture.rst | |
| parent | db14aad1c5ab38c2313e2edfbad44887bb6f980a (diff) | |
Add security notes
- threat modeling
- ensure user knows which environment is production and which is
for testing only.
Issue-ID: POLICY-4817
Change-Id: I893ff875b9e812ba8b91bc15cd4f1df737800e8b
Signed-off-by: adheli.tavares <adheli.tavares@est.tech>
Diffstat (limited to 'docs/architecture/architecture.rst')
| -rw-r--r-- | docs/architecture/architecture.rst | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/docs/architecture/architecture.rst b/docs/architecture/architecture.rst index fb960f0c..18f2d233 100644 --- a/docs/architecture/architecture.rst +++ b/docs/architecture/architecture.rst @@ -769,5 +769,26 @@ Policy Set A set of policies that are deployed on a PDP g deployed on a PDP group ================================= ================================================================================== +5. Security +=========== + +5.1 Threat Modeling +------------------- + +====================== ==================================================== ========================== +Threat category Attacker’s motive Affected security property +====================== ==================================================== ========================== +Spoofing Impersonating another user or system Authenticity +Tampering Illegal modification of data in transit or at rest Integrity +Repudiation Disputing an action that has taken place Non-repudiability +Information Disclosure of confidential information Confidentiality +Denial of Service Making system temporarily or permanently unavailable Availability +Elevation of Privilege Gaining higher privileges than entitled to Authority +====================== ==================================================== ========================== + +To ensure that this threat model is mitigated, use only ONAP Operations Manager `OOM <https://github.com/onap/oom>`_ +for production deployment. Policy docker and helm environment available at `policy-docker <https://github.com/onap/policy-docker>`_ +are for testing purposes only. + End of Document |