Extend scs-0003: more context and process (resolves issues/#343) #329
Conversation
mbuechse
commented
Aug 10, 2023
•
mbuechse
commented
- added lots of context in the introduction
- introduced the distinction between "certificate" and "certificate type"
- improved misleading wording in the motivation
- rectified incorrect section levels
- added process description (governance)
garloff
added
the
standards
mbuechse
force-pushed
the
extend_scs-0003
branch
from
e1373f1 to
3fbaafa
Compare
|
@alexander-diab This PR is good to be merged; Kurt is satisfied, apparently highly so. Do you have any objections? |
|
|
||
| ## Motivation | ||
|
|
||
| This decision record has three main objectives: | ||
| This decision record establishes a mechanism (by means of the YAML file) with the following three main objectives: |
There was a problem hiding this comment.
Isn't this of type Procedural and not of Decision Record?
| This decision record establishes a mechanism (by means of the YAML file) with the following three main objectives: | |
| This standard establishes a mechanism (by means of the YAML file) with the following three main objectives: |
There was a problem hiding this comment.
The verbiage in question didn't stem from me. Anyway, following your argumentation, we should change "decision record" into "procedural", right? However, I suppose "decision record" could be construed as a kind of general term (a superset) that includes Standards, Procedurals, and any other document. From this point of view, every standard is a decision record, but not every decision record is a standard. If we expressly designate a document as "decision record" in the header, then this mostly means that it doesn't fit into any of the subcategories. Just one way of looking at it.
|
Regarding yaml file: Do we have one yaml file with all layers and levels at the end, or one yaml file per level and layer, such as SCS-compatible-IaaS.yaml for layer IaaS and level "SCS-compatible" I prefer the second option, as one file may be grow over time and gets confusting. We may even think to have one file or each version, such as SCS-compatible-IaaS-v1.yaml for version 1 of layer "SCS-compatible" certificate for IaaS. |
Currently, it's one file per level, containing both layers. I would prefer one file per type of certificate, that is to say, one file per combination of level and layer. But this has been an open topic in the SIG for months now. @anjastrunk see here: https://input.scs.community/2023-scs-sig-standardization#2023-06-29 |
|
I like your improvements. It makes thing clearer. One question, which came to may mind: Is there already a standard for receiving a certificate as CSP? I mean, how das a CSP apply for a certificate, how often will a re-certification take place and what are the consequences if certificate rules are violated? |
@anjastrunk Something like that is being worked on in #337 |
We should but this on next SIG' agenda and make a decision! |
Yes. Thanks. |
I prepared the agenda accordingly. |
|
I currently work on this. I have created a section on the docs page explaining the "certification" topic. There will be one section called "How to get certified". I will discuss this with Kurt tomorrow afternoon. And then write it up in this section. But it will be simply:
|
Signed-off-by: Matthias Büchse <[email protected]>
Signed-off-by: Matthias Büchse <[email protected]>
Signed-off-by: Matthias Büchse <[email protected]>
Signed-off-by: Matthias Büchse <[email protected]>
mbuechse
force-pushed
the
extend_scs-0003
branch
from
3fbaafa to
4088cd7
Compare
