|Approvers||EGI Foundation Executive Board|
|Approved version and date|
|Statement||This document describes the security-related policy requirements for the generation, distribution and operations of virtual machine (VM) images, as part of a trusted computing environment of the IT infrastructure. The aim is to enable VM images to be generated according to best practices and to be both trusted and operated elsewhere.|
|Next policy review||together with process review|
The following table is updated after every review of this document.
|Date||Review by||Summary of results||Follow-up actions / Comments|
Table of contents
Please refer to the EGI Glossary for the definitions of the terms used in this policy.
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", “MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
See policy published at https://documents.egi.eu/document/2729