Threat model: design + strategy parent #3
Labels
No labels
burndown-2026-06
coherence-core
consult
headless
interactive
P0
P1
P2
P3
P4
No milestone
No project
No assignees
1 participant
Due date
No due date set.
Dependencies
No dependencies set.
Reference
coilyco-flight-deck/otel-a2a-relay#3
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally filed by @coilysiren on 2026-05-08T12:16:39Z - https://github.com/coilysiren/otel-a2a-relay/issues/101
Parent issue for working through the o2r threat model. Authoring this is a prerequisite for the encryption / signing / key-management cluster (#77, #79, #80, #83, #85) and the cross-tenant attack tickets (#49, #52, #53).
Open questions
These need answers before any child ticket in the cluster can move autonomously.
Trust boundaries
Attacker capabilities
Out-of-scope attacks
Defense ordering
Output
A docs/threat-model.md (or section in docs/protocol.md, see #83) that:
Children unblocked once this lands
This issue stays open as the design home until the threat model doc is committed; then close and link.
Backlog burndown 2026-06-17: closing low-priority (P3/P4) to bring the open count to a manageable level. Nothing lost — reopen if this resurfaces. Batch tag:
burndown-2026-06.