Attendance:
- Ken Yi
- Daniil Egranov
- Tina Tsou
- Randy Stricklin
Topics:
- Action item from F2F meeting: Security sub-committee to propose open source tools to test the security and add as a plugin into the validation project
- Reviewed tool list (Akraino Security Development Lifecycle#Verification)
- Application security testing tools pyramid from CMU: https://insights.sei.cmu.edu/sei_blog/07092018_testingtools_scanlon_figure2_2.png
Action Items:
- Clean up the license info for the top 2 in each category. Owner: Ken Yi
- Add recommended tool list to full stack test and platform test. Owner: @Daniil Egranov