updates to common features #571
Conversation
| @@ -1,13 +1,13 @@ | |||
| features: | |||
| - id: CCC.F01 # Encryption in Transit Enabled by Default | |||
| title: Encryption in Transit Enabled by Default | |||
There was a problem hiding this comment.
enc in transit isn't a given or enables by default. But you can configure and use enc
There was a problem hiding this comment.
I was able to easily find documentation describing the places where GCP provides default encryption in transit as a key feature. If other providers aren't doing something similar already, I'd say they need to be held to the same standard.
https://cloud.google.com/docs/security/encryption-in-transit#encryption_in_transit_by_default
There was a problem hiding this comment.
If it is not enabled by default for the service that you are working on then I suggest don't include this common feature and create a specific feature for that service
|
|
||
| - id: CCC.F02 # Encryption at Rest Enabled by Default | ||
| title: Encryption at Rest Enabled by Default |
There was a problem hiding this comment.
isn't by default...
There was a problem hiding this comment.
Azure does appear to encrypt all data at rest by default for their storage services. If some other provider doesn't do the same, I would say they need to be held to this standard.
There was a problem hiding this comment.
If it is not enabled by default for the service that you are working on then I suggest don't include this common feature and create a specific feature for that service
| description: | | ||
| Provides default encryption of data before storage, with the option for | ||
| Provides encryption of data in storage, with the option for |
There was a problem hiding this comment.
grammar change only
There was a problem hiding this comment.
default should be present here
| @@ -22,24 +22,12 @@ features: | |||
| Allows the setting of a threshold where industry-standard throughput is | |||
| achieved up to the specified rate limit. | |||
|
|
|||
| - id: CCC.F05 # Signed URLs | |||
There was a problem hiding this comment.
I don't see this as a common feature. Perhaps I've misunderstood signed-urls but they're not ubiquitous.
There was a problem hiding this comment.
Ubiquitous and common are two different concepts— the idea is to put items in this file if they will be used by multiple other files.
For Signed URLs, we see them on at least 4 different services:
On a separate note, any time we may decide to remove a common entry, we'll also need to correct places where it's already in use:
https://github.com/search?q=repo%3Afinos%2Fcommon-cloud-controls%20CCC.F05&type=code
There was a problem hiding this comment.
Common features do not need to apply for all services. We include the common features that do apply to the specific service in the feature file. If there are more than 1 service that has the same feature or you think there are more services that can use that feature when we start working on them in future we can add it as a common feature.
| @@ -1,13 +1,13 @@ | |||
| features: | |||
| - id: CCC.F01 # Encryption in Transit Enabled by Default | |||
| title: Encryption in Transit Enabled by Default | |||
There was a problem hiding this comment.
If it is not enabled by default for the service that you are working on then I suggest don't include this common feature and create a specific feature for that service
|
|
||
| - id: CCC.F02 # Encryption at Rest Enabled by Default | ||
| title: Encryption at Rest Enabled by Default |
There was a problem hiding this comment.
If it is not enabled by default for the service that you are working on then I suggest don't include this common feature and create a specific feature for that service
| @@ -22,24 +22,12 @@ features: | |||
| Allows the setting of a threshold where industry-standard throughput is | |||
| achieved up to the specified rate limit. | |||
|
|
|||
| - id: CCC.F05 # Signed URLs | |||
There was a problem hiding this comment.
Common features do not need to apply for all services. We include the common features that do apply to the specific service in the feature file. If there are more than 1 service that has the same feature or you think there are more services that can use that feature when we start working on them in future we can add it as a common feature.
| title: Event Notifications | ||
| description: | | ||
| Publishes events for creation, deletion, and modification of | ||
| objects in a way that enables users to trigger actions in response. |
There was a problem hiding this comment.
Not sure why this is removed
| description: | | ||
| Provides default encryption of data before storage, with the option for | ||
| Provides encryption of data in storage, with the option for |
There was a problem hiding this comment.
default should be present here
|
Hey @ianwalkersmithciticom, appreciate the intent here— though the changes don't seem to be aligned with the project vision. GitHub Issues may be a good way to reopen some of this topic for consideration, or if you have any more changes that you want to find alignment on prior to working on a PR. |
I've made some updates to features and removed those that are not common.