No.	Project Name	PTL
1	Radio Edge Cloud (REC)	Paul Carver
2	Connected Vehicle Blueprint	Tao Wang
3	IEC Type 4: AR/VR oriented Edge Stack for Integrated Edge Cloud (IEC) Blueprint Family	Bart Dong
4	The AI Edge: Federated ML application at edge	Enzo Zhang
5	IEC Type 3: Android cloud native applications on Arm servers in edge for Integrated Edge Cloud (IEC) Blueprint Family	Davy Zhang
6	Smart Cities	Olivier Bernard
7	IEC Type 5: SmartNIC for Integrated Edge Cloud (IEC) Blueprint Family	jin peng

Blueprints Participating Maturity Review

~~https://nexus.akraino.org/content/sites/logs/myais/bluval/3/~~

20 May 2022

~~https://nexus.akraino.org/content/sites/logs/myais/bluval/4/~~

fix lynis issue

23 Jun 2022

https://nexus.akraino.org/content/sites/logs/myais/bluval/5/

Fix USB-3000 error;

It's because of different version of lynis, in the lynis.log, SHA_CRYPT_MIN_ROUNDS was

Performing test ID AUTH-9230 (Check password hashing rounds)

Test: Checking SHA_CRYPT_{MIN,MAX}_ROUNDS option in /etc/login.defs

It test ok in the log.

29 Jun 2022

Lynis:

Test: Checking presence /var/run/reboot-required.pkgs: FAILED
2022-06-29 02:14:09 Result: file /var/run/reboot-required.pkgs exists
2022-06-29 02:14:09 Result: reboot is needed, related to 1 packages
2022-06-29 02:14:09 Package: 1
2022-06-29 02:14:09 Result: /boot exists, performing more tests from here
2022-06-29 02:14:09 Result: found /boot/vmlinuz-4.15.0-188-generic
2022-06-29 02:14:09 Result: version derived from file name is '4.15.0-188-generic'
2022-06-29 02:14:09 Result: found version 4.15.0-188-generic
2022-06-29 02:14:09 Result: active kernel version 4.15.0-187-generic
2022-06-29 02:14:09 Result: reboot needed, as there is a difference between active kernel and the one on disk
2022-06-29 02:14:09 Result: /var/cache/apt/archives/ does not exist
2022-06-29 02:14:09 Warning: Reboot of system is most likely needed [test:KRNL-5830] [details:] [solution:text:reboot]

Test: Checking SHA_CRYPT_MIN_ROUNDS option in /etc/login.defs: NOT PRESENT IN THIS LOG

Please define both SHA_CRYPT_MIN_ROUNDS and SHA_CRYPT_MAX_ROUNDS

Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile): FAILED
2022-06-29 02:14:51 Result: sysctl key net.ipv4.conf.all.forwarding has a different value than expected in scan profile. Expected=0, Real=1

No.	Project Name	PTL	Main Committer	Self-Certification Page	Documentation Sub-Committee Ike Alisson	Security Logs (Vuls, Lynis, KubeHunter, no need CD log)	Security Sub-Committee Randy Stricklin Daniil Egranov Wenhui Zhang Exception requests should be filed at: Maturity Blueprints: Akraino CVE and KHV Vulnerability Exception Request	Process Sub-Committee Biswajit De haihui wang	TSC Tina Tsou Oleg Berzin
1	The AI Edge: School/Education Video Security Monitoring	Yu, Liya		Maturity Review Certification of Video Security Monitoring Blueprint	Maturity Review performed over e-mail on May 5th, 2021. Link to the overview: 2021 year	https://nexus.akraino.org/content/sites/logs/baidu/job/security_scan/aiedge/4/result/
2	IEC Type 2 for Integrated Edge Cloud (IEC) Blueprint Family	Trevor Tao	ashvin kumar Vinothini Raju Muhammad Hamza	Integration Edge Cloud Type 1 and Type 2 Release 2 Maturity Review Certification		https://nexus.akraino.org/content/sites/logs/production/vex-yul-akraino-jenkins-prod-1/ https://nexus.akraino.org/content/sites/logs/arm-china/jenkins092/
3	The AI Edge: Intelligent Vehicle-Infrastructure Cooperation System(I-VICS)	Yu, Liya	Hao Zhongwang	Maturity Review Certification of I-VICS
4	IEC Type 5: SmartNIC for Integrated Edge Cloud (IEC) Blueprint Family	jin peng	Leo Li	Maturity Review Certification of SmartNIC	Documentation Review Meeting notes	socnoc - Akraino - Akraino Confluence	5	EALT-EDGE	huiling liu	Boren Zhang	IEC Type 3: Android cloud native applications on Arm servers in edge for Integrated Edge Cloud (IEC) Blueprint Family	Davy Zhang	Maturity Review Certification of Android CloudEALTEdge	Documentation Review Meeting notes	https://nexus.akraino.org/content/sites/logs/ysemihuawei/job/v1/validation_results_v4/ 12 May 2022 ~~https://nexus.akraino.org/content/sites/logs/ysemi/job/v1/validation_results_v5/~~ 13 May 2022 ~~https://nexus.akraino.org/content/sites/logs/ysemi/job/v1/validation_results_v6/~~ 17 May 2022 https://nexus.akraino.org/content/sites/logs/ysemi/job/v2/lynis_v2/lynis/ 28 Jun 2022 29 Jun 2022 Lynis: Test: Checking SHA_CRYPT_MIN_ROUNDS option in /etc/login.defs: FAILED 2022-06-28 17:30:52 Result: low number of maximum encryption algorithm rounds found: 9000 Please define both SHA_CRYPT_MIN_ROUNDS and SHA_CRYPT_MAX_ROUNDS Performing test ID SSH-7440 (Check OpenSSH option: AllowUsers and AllowGroups): FAILED 2022-06-28 17:31:31 Result: AllowUsers is not set 2022-06-28 17:31:31 Result: AllowGroups is not set 2022-06-28 17:31:31 Result: SSH has no specific user or group limitation. Most likely all valid users can SSH to this machine.	16 Jun 2022 Approved by Process Sub-Commitee.	Tina Tsou	6	Smart Cities	Jack Liu Jason Wen	Security-logs/	6/8/2023	06/26/2023	07/20/2023

Records of Details

No.	Project Name	PTL	Main Committer	Self-Certification Page	Documentation Sub-Committee Ike Alisson	Logs (Vuls, Lynis, KubeHunter)	Security Sub-Committee Randy Stricklin Daniil Egranov Wenhui Zhang	Process Sub-Committee Biswajit De	TSC Tina Tsou Oleg Berzin
41	The AI Edge: Federated ML application at edge	Enzo Zhang	haihui wang	Maturity Review Certification of Federated ML Application At Edge Blueprint	Maturity Review Certification of Federated ML Application At Edge Blueprint performed over mail on 01/04 & stored at Documentation Sub-committee reviews for 2022. It is recommended to Akraino TSC to deem the maturity requirements for Documentation to "mature" level as fulfilled and accept the BP graduation request to "Mature" level.	2/28/2022 Update https://nexus.akraino.org/content/sites/logs/fate/fml/mat4/	1/3/2022 Emailed Haihui Wang: AI Edge- Federated ML blueprint has passed the Incubation phase in Release 5 it also meets the Maturity requirements for Vuls. However, The Lynis test requirements are more stringent for Maturity than Incubation. The additional Lynis Maturity criteria can be found at https://wiki.akraino.org/pages/viewpage.action?pageId=11996301#StepsToImplementSecurityScanRequirements-VulsIncubationandMaturityPASSFAIL in the ‘Lynis Maturity: PASS/FAIL Criteria, v1.0’ section. Please run the Lynis tests against the AI Edge – Federated ML blueprint and correct issues so that all Maturity tests pass. Once all Maturity tests pass please send the lynis.log output file to the Akraino security team for review. 1/14/2022 Emailed Haihui Wang: Below is the analysis that our maturity check script returned for the lynis log for the AI Edge – Federate ML blueprint. All tests that ‘FAILED’ need to be corrected to be approved for maturity, there are more tests that failed than the one that you listed. For the test ID AUTH-9229 that you described, would you be able to increase the ‘rounds’ to a value greater than 5000 and expire passwords so that they encrypt with new values?	Approved by Process Sub-Commitee.
2	IEC Type 3: Android cloud native applications on Arm servers in edge for Integrated Edge Cloud (IEC) Blueprint Family	Davy Zhang		Maturity Review Certification of Android Cloud	Documentation Review Meeting notes	~~https://nexus.akraino.org/content/sites/logs/ysemi/job/v2/lynis_v2/lynis/~~ 28 Jun 2022 https://nexus.akraino.org/content/sites/logs/ysemi/job/v2/lynis_v3/lynis/ 30 Jun 2022	05 Jul 2022 Approved by Security Sub-Committee.	16 Jun 2022 Approved by Process Sub-Commitee.	Approved by TSC
3	Smart Cities	Olivier Bernard	Jack Liu Jason Wen	Maturity Review Certification of Smart Cities	Documentation Review Meeting notes	07 Jul 2022 https://nexus.akraino.org/content/sites/logs/myais/bluval/6/	07 Jul 2022 Approved by Security Sub-Committee.	09 Jul 2022 Approved by Process Sub-Commitee.
4	IEC Type 5: SmartNIC for Integrated Edge Cloud (IEC) Blueprint Family	jin peng	Leo Li	Maturity Review Certification of SmartNIC	Documentation Review Meeting notes	https://nexus.akraino.org/content/sites/logs/socnoc/job/security_scan/	07 Dec 2022 Approved by Security Sub-Committee.
5	EALT-EDGE	huiling liu	Boren Zhang	Maturity Review Certification of EALTEdge		https://nexus.akraino.org/content/sites/logs/huawei/job/Security-logs/	2023/6/8 Approved by Security Sub-Committee. 22 Feb 2023 Lynus: Performing test ID BOOT-5184 (Check permissions for boot files/scripts): FAILED Performing test ID AUTH-9229 (Check password hashing methods): FAILED Test: Checking SHA_CRYPT_{MIN,MAX}_ROUNDS option in /etc/login.defs: FAILED Performing test ID USB-2000 (Check USB authorizations): FAILED Performing test ID USB-3000 (Check for presence of USBGuard): FAILED Test: Check if one or more compilers can be found on the system: FAILED Note: Please add links to the Vuls and Kube-hunter logs.	06/26/2023	07/20/2023

Space shortcuts

Page tree

Versions Compared

Old Version 51

New Version Current

Key

Blueprints Participating Maturity Review

Records of Details

Space shortcuts

Page tree

Page History

Versions Compared

Old Version 51

New Version Current

Key

Blueprints Participating Maturity Review

Documentation Review Meeting notes

Smart Cities

Records of Details

Documentation Review Meeting notes

Documentation Review Meeting notes