Equinox/Plan/Galileo/Security

Security

Overall Goals

1. Usability. Develop useful UIs for functionality delivered in Ganymede, including a certificate management subsystem. Enhance functionality for developing and testing with signed bundles.
2. Consumability. Graduate authorization APIs for Trusted Bundle feature, ensure consistency across PKI based use-cases: P2 (Signed Artifacts), Framework (Trusted Bundles) & ECF (SSL)
3. Security. Continue to pursue solutions to the need for fine grained (but still usable and deployable) code authorization scenarios
4. Testing. Develop new tests to fill in gaps in the automated tests

Usability

• User interface for trusted certificates - 153815
• Import wizard for trusted certificates - 209395
• Export wizard for trusted certificates - 209815
• User-writeable trust storage for certificates - 231204
• Support certificate usage in trust decisions - 223033

Consumability

• Graduate authorization APIs for Trusted Bundle feature, ensure consistency across PKI based use-cases: P2 (Signed Artifacts), Framework (Trusted Bundles) & ECF (SSL)

Testing

• Develop new tests to fill in gaps in the automated tests

Current Milestone Plan

M3 - October 31, 2008

• UI design for certificate management subsystem - Matt
• Investigate use cases for authorization API across Framework,P2,ECF - Eric

Future Milestone Plans

M4 - December 12th, 2008

• Implement certificate management subsystem - Matt
• Finalize and graduate authorization API - Eric

M5 - January 30th, 2009 - Major Feature Freeze

M6 - March 12th, 2009 - API Freeze

• Polish API javadoc, package.html doc

M7 - May 1st, 2009 - Development Complete

• Polish items
• Performance work
• Testing and test framework improvements

Previous Milestone Plans

M1 - August 8th, 2008

• Bug triage

M2 - September 19th, 2008

• Planning

Legend

Needs some investigation Patch in progress Bug fixed / Feature added