[trustable-software] Trustable project for certification of operating system distributions
Paul Sherwood
paul.sherwood at codethink.co.uk
Thu Jul 5 16:14:37 BST 2018
Hi all
On 2018-06-29 18:47, Paul Sherwood wrote:
> as a result of various conversations with existing and potential
> customers, and building on the discussions here over the last two
> years, Codethink is planning a new project to establish requirements,
> software, infrastructure and best-practices with the aim of
> demonstrating how operating system software can be considered
> trustable for use in regulated industry applications.
<snip>
this project is now getting started at [1] with its own mailing list
[2]. Conversation is on #trustable on freenode. We'll be attempting to
dogfood some of the trustable hypothesis concepts [3] and the new PoC
gitect [4] project for evidence collection.
We've immediately hit a corner case [5], i.e.
- I've already expressed intents for the work (via the previous email
and in some text in the git repo
- however we have no approvals for the work, which defeats the idea of
demonstrating independent reviews and sign-offs.
So in order to close this particular gap...
*** please could readers of this email reply to indicate that you
approve of the work being attempted (if you do)? ***
I think we need at least two people independent from me/Codethink to say
"yes" this is worth a shot.
Conversely if you have concerns or proposals I'd be happy to hear those
too.
br
Paul
[1] https://gitlab.com/trustable/distros/overview
[2]
https://lists.trustable.io/cgi-bin/mailman/private/trustable-distros/2018-July/thread.html
[3] https://gitlab.com/trustable/workflow/blob/master/definitions.md
[4] https://gitlab.com/trustable/gitect
[5] https://gitlab.com/trustable/distros/overview/issues/2
More information about the trustable-software
mailing list