Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security Report: Perform hardening on Zephyr apps before MESH release #116

Open
adamfowleruk opened this issue Apr 17, 2022 · 0 comments
Open

Security Report: Perform hardening on Zephyr apps before MESH release #116

adamfowleruk opened this issue Apr 17, 2022 · 0 comments
Assignees
@adamfowleruk
Labels
enhancement New feature or request security Security issue report
Milestone
Unscheduled

Comments

@adamfowleruk
Copy link
Contributor

Zephyr includes tools to help with checking the hardening configuration of apps. Principally:-
https://docs.zephyrproject.org/latest/security/hardening-tool.html

Run these before release for all end-user intended apps.

Also ensure our secure updates and OTA are working as per secure design principles:-
https://docs.zephyrproject.org/latest/security/security-overview.html#system-level-security-ecosystem

Also document the threat model for each final app, as well as each Herald module (E.g. Core, Mesh, Modem etc.).
@adamfowleruk adamfowleruk added enhancement New feature or request security Security issue report labels Apr 17, 2022
@adamfowleruk adamfowleruk self-assigned this Apr 17, 2022
@adamfowleruk adamfowleruk added this to the Unscheduled milestone Oct 7, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@adamfowleruk adamfowleruk

Labels
enhancement New feature or request security Security issue report
Projects
None yet
Milestone
Unscheduled
Development

No branches or pull requests
1 participant
@adamfowleruk