Skip to content

Latest commit

 

History

History
25 lines (16 loc) · 986 Bytes

File metadata and controls

25 lines (16 loc) · 986 Bytes

Security Model

This document describes repository-level security constraints for the active engines.

Scope

  • ICFG: parse and validate untrusted configuration payloads
  • ILOG: parse and validate untrusted log containers
  • IUPD: verify and apply update packages under explicit validation rules

Current security posture

  • Fail-closed validation is part of the public intent for native and managed validation paths.
  • Public documentation only claims security properties that are visible in code and tests.
  • The repository does not claim that all native and managed paths have identical security coverage.

Current limitations

  • Native builds currently depend on OpenSSL through libs/ironcfg-c.
  • Embedded portability should not be assumed from the full native tree while that dependency remains.
  • Historical codecs present in source are outside the active security model.

Reporting

For vulnerability reporting workflow, see SECURITY.md.