Security Guide - Chapter 43. Trusted Images Intro
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Low
|
parimala |
Bug Description
Re-arranging sentence structure for clarity
Currently States: "With regards to images, users will be working with pre-installed images or images that they upload themselves. In both cases, users will want to ensure that the image they are ultimately running has not been tampered with. This requires some source of truth such as a checksum for the known good version of an image as well as verification of the running image. This section describes the current best practices around image handling, while also calling out some of the existing gaps in this space."
Recommended Update: "In a cloud environment, users work with either pre-installed images or images they upload themselves. In both cases users should be able to ensure the image they are utilizing has not been tampered with. This requires a method of validation – such as a checksum for the known good image – as well as verification of a running instance. While there are current best practices around these actions there are also several gaps in the process."
-------
Built: 2014-07-18T11:07:05 00:00
git SHA: 2dc0f54e2f4b1a5
URL: http://
source File: file:/home/
xml:id: security-
Changed in openstack-manuals: | |
status: | New → Confirmed |
importance: | Undecided → Low |
tags: | added: low-hanging-fruit sec-guide |
Changed in openstack-manuals: | |
assignee: | nobody → Talusani Mani Shanker (shanker-mani0) |
Changed in openstack-manuals: | |
assignee: | nobody → parimala (parimalaprahlada) |
Changed in openstack-manuals: | |
status: | Confirmed → In Progress |
Removed assignee since there's no progress after two months...