Skip to end of metadata
Go to start of metadata

Kantara Initiative

 Security threat that could possibly affect some of the Kantara community. Click here to read more ...

Hello Kantara participants 
Our cloud service provider Digital Ocean, has advised us of a threat that could possibly affect some of the Kantara community.
Intel has discovered a security vulnerability called L1 Terminal Fault. Red Hat has a good video explaining it  here . Digital Ocean uses Intel processors. The video explains a vulnerability where a malicious application in another cloud server that is running on the same processor core could conceivably read memory from our cloud server. While the attacker would not be able to target Kantara specifically, it could conceivably be randomly assigned a shared processor core whereby possibly personal data from pages in Confluence and/or Mailman with restricted access could be in the processor's memory. Intel and Digital Ocean are working diligently on the issue and will advise us of progress, so we can advise you. Please note that some of the fixes for this issue may significantly slow down our server infrastructure temporarily (the need to turn off hyper-threading). Thanks for your forbearance.

Kind regards, Kantara Staff

The Kantara Initiative is the global consortium improving trustworthy use of identity and personal data through innovation, standardization and good practice.

Join. Innovate. Trust.

Few, if any, organisations can succeed at all of stages of digital transformation in isolation.
Kantara Initiative brings together the right thought leaders and industry representation - vendors, adopters, governments, standards bodies - to address all transformation stages.


  • All Spaces
Space: Approval Programs
Space: Archived Groups
Space: Board of Directors
Space: BoT - Liaison Sub Committee (PRIVATE)
Space: DG - Blockchain and Smart Contracts
Space: DG - Identities of Things
Space: DG - Identity Proofing and Verification Use Cases
Space: General Information
Space: Leadership Council
Space: R&D Program
Space: WG - Consent & Information Sharing
Space: WG - Consent Management Solutions
Space: WG - eGovernment
Space: WG - Federation Interoperability
Space: WG - Healthcare ID Assurance
Space: WG - IDEF
Space: WG - Identity Assurance New
Space: WG - Identity Assurance OLD space
Space: WG - Identity Relationship Management
Space: WG - Open Trust Taxonomy for OAuth2
Space: WG - User Managed Access
Space: WG - User-Managed Access Developer Resources

  • No labels