NFR - Document security concept #1671
DanielaWuensch
started this conversation in
Ideas
Replies: 1 comment
-
|
Some background information: we have already shared the results of a threat modeling and assessment study we did on the EDC codebase. Although it is over a year old, it is still relevant. Has that been reviewed? |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Feature Request
Non-functional Requirement - Document security concept
The EDC should document the security concept in a separate document and guidelines. These documents should keep information about how to securely setup, configure, and operate the EDC.
These documents could also be contain or reference to external documents like security scans, upgrade guides, or technical operating manuals.
The following topics should be covered by the security document:
Document security concept and define it as guideline in git to ensure implementation accordingly
Which Areas Would Be Affected?
all, including DPF, CI, build, transfer, etc._
Why Is the Feature Desired?
Security Requirement
Solution Proposal
Document security concept in git
Type of Issue
non-functional requirement
Checklist
Security concept documented and defined as guideline in git to ensure implementation accordingly
Beta Was this translation helpful? Give feedback.
All reactions