summaryrefslogtreecommitdiffstats
path: root/security-blueprint/annexes/todoNotes.md
blob: e5f6377ee368d5e086522ecdf41790021a999d5e (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
# Todo notes
<!-- todo -->

Domain          | Improvement
--------------- | ----------------------------------------------------
Boot-Abstract-1 | More generic and add examples (The chain of trust).

Domain          | Improvement
--------------- | -------------------------------------------
Boot-Abstract-1 | Review the definition of the "boot loader".

Domain          | Improvement
--------------- | ------------------------------------
Boot-Consoles-1 | Secure loader: No reference earlier?

Domain                | Improvement
--------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hypervisor-Abstract-1 | Complete Hypervisor part ([jailhouse](https://github.com/siemens/jailhouse) / [KVM](https://www.linux-kvm.org/page/Main_Page) / [Xen](https://www.xenproject.org/developers/teams/embedded-and-automotive.html)).

Domain              | Improvement
------------------- | -----------
Platform-Services-1 | SystemD ?
Platform-Services-2 | Secure daemon ?

Domain                        | Improvement
----------------------------- | ------------------------
Platform-Users-Capabilities-1 | Kernel or Platform-user?
Platform-Users-Capabilities-2 | Add config note.

Domain                     | Improvement
-------------------------- | ------------------------------
Application-Installation-1 | Talk about AppFw offline mode.

Domain                  | Improvement
----------------------- | ----------------------------------------------------------
Application-Signature-1 | Add content (see secure build in Secure development part).

Domain                 | Improvement
---------------------- | ------------
Application-Services-1 | Add content (Which services?).
Application-Services-2 | Add Binder.

Domain                  | Improvement
----------------------- | -----------------
Connectivity-Abstract-1 | Improve abstract.

Domain                  | Improvement
----------------------- | -------------------------------------------
Connectivity-Wireless-1 | Add communication channels (RFID, ZigBee?).

Domain        | Improvement
------------- | -----------------
Update-SOTA-1 | Part to complete.

Domain                  | Improvement
----------------------- | ------------
SecureDev-SecureBuild-1 | Add content.

Domain                 | Improvement
---------------------- | ------------
SecureDev-Signatures-1 | Add content.

Domain                | Improvement
--------------------- | -----------------------------------------------------
SecureDev-CodeAudit-1 | Add CVE analyser.
SecureDev-CodeAudit-2 | [OSSTMM](http://www.isecom.org/mirror/OSSTMM.3.pdf).

<!-- endtodo -->