2024-08-08 Meeting notes
Date
Attendees
Name | Present | Planned Absences |
---|---|---|
Yes | On vacation August 12th - August 16th | |
Yes | ||
Yes | ||
Yes | ||
Yes | ||
Kevin Day | Yes | |
Jens Heinrich | Yes |
Discussion items
Time | Item | Who | Notes |
---|---|---|---|
1 min | Cookie SameSite topic raised in Slack | Team + Zak |
Today:
|
1 min | Update on SECURITY-159 / FOLIO-4012 | Craig | We're on track here. Ian H. applied mitigation. Upgrade will happen when John Malconian returns from vacation.
Today
|
1 min | Jira Group and Security Level review | Team | From Craig in slack:
TODO:
Today:
|
Remaining time | Anything Urgent? Review the Kanban board? Under Review Filter: | Team |
Today: |
Topic Backlog | |||
Time permitting | Advice for handling of sensitive banking information | Team | From slack conversation, I think I've gathered the following:
Let's review and discuss before providing this feedback to Raman. Axel Dörrer also suggested that defining classes of sensitivity could help teams determine which techniques are applicable in various situations. I agree having some general guidelines on this would be helpful.
It would probably help to provide concrete examples of data in each class. This can be a longer term effort, we don't need to sort out all the details today.
Today: Axel Dörrer to do a first draft as a base for further discussions |
Status on pentesting works within Network traffic control group | Due to some absences on different reasons the group stalled. Axel will try to reactivate the group. |