Skip to content

Releases: OpenTOSCA/winery

CSAR Accountability

30 Aug 09:24
@ghareeb-falazi ghareeb-falazi
paper/gf-accountability
a36b3e3
Compare
Choose a tag to compare
CSAR Accountability Pre-release
Pre-release

For details about the environment setup, as well as some sample use-cases please visit the accountability readme.

Assets 2
Loading

paper/lh-pattern-based-modeling

29 Aug 06:47
@lharzenetter lharzenetter
paper/lh-pattern-based-modeling
e6a2538
Compare
Choose a tag to compare
paper/lh-pattern-based-modeling Pre-release
Pre-release

Description

This is the implementation for the UCC 2018 Paper "Pattern-based Deployment Models and Their Automatic Execution".

Demo Video

How it works is shown in our demo video.

Assets 2
Loading

v2.1.0-M1-silvaner

16 Aug 12:36
@miwurster miwurster
v2.1.0-M1
72592d2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.1.0-M1-silvaner 
Fix to use CATALINA_OPTS variable in Dockerfile (#119)

It is required to quote the variable value.
Assets 2
Loading

Secure CSAR

17 Jul 14:40
@lharzenetter lharzenetter
paper/vy-secure-csar
8f99fa3
This commit was signed with the committer’s verified signature.
v-yussupov
GPG key ID: 8B475E881BF9F6D8
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure CSAR Pre-release
Pre-release

This release of Winery includes features implemented for the paper "Secure Collaborative Development of Cloud Application Deployment Models".

Key points of the prototypical implementation:

  • Generation of external signature of the whole CSAR similar to signing of JARs
  • Generation of internal signatures for chosen Node Templates properties and chosen files in Artifact Templates
  • Generated internal signatures are also similar to signing of JARs
  • Encryption for chosen Node Templates properties and chosen files in Artifact Templates
  • Internal signatures and encryption requirements are modeled using policies
  • Encryption and signing of properties are modeled on the level of Node Types
  • Encryption and signing of files in Artifact Templates are modeled on the level of Artifact Templates
  • To preserve self-containment of CSARs, internal signatures for properties are generated and bound to DAs belonging to corresponding Node Templates
  • To preserve self-containment of CSARs, internal signatures for files in Artifact Templates are generated and attached to corresponding Artifact Templates as Artifact References
  • All requirements are enforced at export time
  • Verification happens at import time

Following improvements and new features were added:

  • Key and corresponding ACLs management functionalities
  • Extension to Node Types and Artifact Templates to support policies
  • Security policies generation
  • Enforcement of security policies at export time
  • Verification of external and internal signatures at import time
Assets 2
Loading

v2.0.0-M1-OpenTOSCA

03 Jul 17:23
@koppor koppor
v2.0.0-M1-OpenTOSCA
6808fe2
Compare
Choose a tag to compare
v2.0.0-M1-OpenTOSCA Pre-release
Pre-release

Same as v2.0.0-M1 from Eclipse with winery#74 merged.

Assets 4
Loading