Tuesday, April 16, 2013. 14:00 - 15:00 US - Eastern (GMT -04:00)
TurboBridge Conference ID: 11235#
Main Access: +1-480-297-0005 (preferred if you don't pay for long distance by the minute)
Toll-Free Access: +1-800-309-2350
International numbers: http://turbobridge.com/international.html
Additional US Local numbers: http://turbobridge.com/local_toll.html
Options & Commands: http://www.turbobridge.com/join.html
SIP Access: sip:bridge@turbobridge.com
Discussed and approved request to add Marvin and Scott to cas-appsec-private and proposed policy around membership.
Custom OAuth code to be swapped out for Spring Security OAuth support. SAML remediation on hold.
Jasig infrastructure not available for dynamic code scans. Bill will pursue free AWS instance. Jerome will pursue free hosting for open source projects. In the meantime Aaron will setup a local test bed.
Aaron will triage static scan report after setting up local test bed.
Starting reviewing additional DFD diagrams added by Jérôme on CAS Threat Modeling.
Decided on using open source DIA as a tool and format for DFD work.
Review of DFD of CAS tickets storage:
Next call will be via EMC webex. David will setup and share coordinates on list.
Action Items