Guideline for Applying Secure Defaults

[PushkarJ]

Description: As part of #480 , a discussion sparked about what does secure defaults and applying it to a project mean for us and for the community in general. This issue is an attempt to reasonably address that through community discussions

Impact: Identify state of the art and carve content to articulate this in a standalone doc, which could be adopted in other Security TAG deliverables

Some questions we can attempt to address:

• How does secure defaults, impact new user experience, stability, backwards compatibility?
• Is there a golden middle ground somewhere that can be articulated?
• Which projects have done this well in the past?
• Does transparent security mean the same as secure defaults?
• Are there any case studies from end users (security conscious ones especially) that we could benefit from?
• Is this even something that is theoretical possible but never realistically achievable?

TO DO

• Security TAG Leadership Representative: @TheFoxAtWork
• Project leader(s): @PushkarJ
• Project Members: Authors and contributors to the guideline
• Scope: Create a high level guideline to successfully enable a project to adopt secure defaults. Each guideline will be brief, with rationale, "how-to" and example
• Deliverable(s): https://docs.google.com/document/d/1Y1OCgto48Woc0UsZHq7zHuYOFGYI_DTpC2o7k7KYeaA/edit#
• Due date: 31 October 2021
• Slack Channel (as needed): #tag-security
• Meeting Time & Day: Regular meetings
• Next Step: Decide where and how to publish and adop this guidance

[lumjjb]

If worthwhile, we can also dedicate a meeting session to have a discussion around this.. However, it would be good for a discussion to have presentation to level-set and bring folks up to speed, so if someone can do a short 15 mins presentation on this, we can schedule it..

[TheFoxAtWork]

@PushkarJ ?

[PushkarJ]

Thanks for the ping! Been waiting to see if folks are interested in this, especially to present as @lumjjb suggested, since the scope really depends on how many contributors are interested in this. If there are handful of people willing to collaborate we could write a blog post or position paper on this. If not many contributors are interested, we could merge this as a separate section into #747

[TheFoxAtWork]

@PushkarJ is this something we can float for today's meeting topic to at least walk through what a scope would look like and see if folks are interested?

[PushkarJ]

We did bring it up last time. Happy to revisit today and then fold it into white paper, if there is not much interest to pursue this separately :)

[chubirka]

I recommend creating a statement/document that establishes "secure by default" as a specific guiding principle. Then create some patterns that illustrate that principle. I'm happy to be a contributor on this.

[lumjjb]

May be of relevance #176

[PushkarJ]

Hi All, thanks for the interest in defining secure by default for cloud native community. To get things started today I documented some guiding principles for "secure by default" here: https://hackmd.io/byHwZ8WPTCaSHnXaosxVcQ

You will need to sign-in to hackmd to collaborate (edit, comment). Hope this triggers some ideas from you all. Happy to discuss this in one of our regular meetings as well especially the rationale and examples :)

[TheFoxAtWork]

Call to action sent out: https://lists.cncf.io/g/cncf-tag-security/message/71